360 Advanced Advises Third-Party Data Managers to Plan Now to Undergo IT Control Audits in 2016
September 25, 2015 prod360
TAMPA, Sept. 24, 2015 (GLOBE NEWSWIRE) — With mounting regulatory scrutiny and stiffer penalties for an increasing level of data breaches worldwide, leading data compliance audit firm 360 Advanced is advising vendors managing consumer data to plan now to complete or update examinations in 2016 attesting to their compliance with industry-standard data protection processes.
The readiness assessment and the actual compliance examination can require a timeline of up to six months to complete, according to Eric Ratcliffe, Director at 360 Advanced PA, a national, multi-service, licensed Certified Public Accountant (CPA) and Qualified Security Assessor (QSA) firm that specializes in integrated compliance solutions for service providers.
“Compared to the huge fines being levied and the enormous cost of lawsuits following breaches, completing the IT controls audit process is inexpensive, in relative terms, considering the financial investment and staff time involved,” said Ratcliffe. “With the 2016 budget cycle for most businesses commencing now, it is a wise executive decision to consider adding a line item to comfortably fund this essential initiative next year.”
IT security audits can examine a firm’s levels of compliance with standards such as the Service Organization Controls 1 (SOC 1 or SSAE 16), SOC 2, SOC 3, PCI DSS (Payment Card Industry Data Security Standards), Health Insurance Portability and Accountability Act (HIPAA) Security/HITECH, Microsoft Supplier Security and Privacy Assurance Program (MSSPA) and others.
ABOUT 360 Advanced, Inc.
Known for its responsiveness, collaboration, experience and professionalism, 360 Advanced, Inc. has clients in more than 35 states that are major service providers in various industries, including cloud and SaaS based organizations. 360 Advanced is one of only a few specialized firms in the U.S. that assist service providers as their independent assessor in developing, maintaining and communicating security and compliance to their clients.
360 Advanced’s services are provided, but not limited to, the following industries: Hosted and Managed IT, Data Center and Colocation, Software as a Service (SaaS), Healthcare, Financial Services, Insurance, HR | Payroll | PEO, Legal and Collections, Bulk Mail Printing and Distribution, Business Process Outsourcing and Marketing.