circle-black-bg-rainbow clouds

Join Deloitte

Sixth Annual Third-Party Assurance Summit October 30, 2024

Join us for our sixth annual virtual Third-Party Assurance Summit as we cover hot topics and trends in third-party assurance. We will explore opportunities to leverage system and organization controls (SOC) reporting and third-party assurance to establish trust and provide transparency to your customers, business partners, regulators, and stakeholders. Participants may join break-out sessions on emerging topics such as Third-Party Assurance Trends, SOC Basics, evaluating and using Service Auditor Reports, Management Assertion Reports and Financial Services Hot Topics.

PLEASE NOTE: Each session must be registered for individually. Please return to the main page to register for the next session.

Agenda

Breakout Session 1: SOC Basics + Evaluation of Service Auditor Reports | 12:30 PM – 1:30 PM EST

This course is designed to introduce individuals to SOC reports and how they are intended to be used by user entities. Participants will learn about the different aspects of SOC reports including the opinion, assertion, description of the system, and testing of controls performed by the service auditor. Participants will also gain insight into how to evaluate the results of the report, complementary user entity controls, and complementary subservice organization controls.

Host: Katherine Kaewert, Managing Director, Deloitte & Touche LLP

Speakers:

  • Xing Yan, Senior Manager, Deloitte & Touche LLP
  • Ivan Mendez Gonzalez, Manager, Deloitte & Touche LLP
1 Overview CPE credit | Auditing

Learning objectives:

Upon completing this course, participants will be able to:

  • Describe the uses and benefits of SOC reports.
  • Describe the most common types of SOC reports.
  • Recall key elements of a SOC 1 and SOC 2 report.
  • Evaluate SOC reports received from third parties.

View on Demand >

Breakout Session 2: Management Assertion Reports + FSI Hot Topics & Closing | 1:30 PM-2:35 PM EST

This course is designed to introduce individuals to management assertion reports and how these reports can be utilized by service organizations. In addition, participants will hear about hot topics that are affecting the financial services industry, including ISO 27001.

Host: Allen Bradley, Managing Director, Deloitte & Touche LLP

Management Assertion Reports:

  • Dan Zychinski, Managing Director, Deloitte & Touche LLP

FSI Hot Topics:

  • Stacie King, Managing Director, Deloitte & Touche LLP
  • Kim Dragovic, Senior Manager, Deloitte & Touche LLP

Summit recap and closing:

  • Shannon Kramer, Principal, Deloitte & Touche LLP
  • Katherine Fortune, Managing Director, Deloitte & Touche LLP

1 Overview CPE credit | Auditing

Learning objectives:

Upon completing this course, participants will be able to:

  • Discuss management assertion reports and their relevancy to service organizations.
  • Identify opportunities for management assertion reports to be implemented within their organizations.
  • Identify key issues related to SOC reporting in the financial services industry and ISO 27001.

View on Demand >

Speakers

Related content

Lorem ipsum

Expose the risk, protect your cloud

In a boundaryless environment like the cloud, it can be all too easy to assume that certain cloud risks are someone else’s obligation. But having a clear understanding of assurance expectations and knowing who is responsible can help user organizations avoid the pitfalls that go with a false sense of security.

Learn more
Lorem ipsum

SOC 2 Examinations: Challenges and the Next Evolution

Increasingly, companies are turning to third parties to manage core business and IT processes, giving outsource service providers (OSPs) access to sensitive data, with implications on internal control environments. As companies increasingly demand third-party assurance (TPA) reports, how can OSPs develop a streamlined approach?

Learn more
Lorem ipsum

You may need CMMC to do business with the DoD

The release of the Cybersecurity Maturity Model Certification (CMMC) brings changes to the Department of Defense (DoD) Supply Chain for both contractors and subcontractors. As CMMC will be a requirement to do business with DoD, it is critical for DoD contractors to understand what CMMC means for their organizations and begin preparing now.

Learn more
${tab-4-img-alt}

Third-party reporting proficiency with SOC 2+

Doing business as an “extended enterprise” is now the norm. Today, companies of all sizes routinely rely on an ecosystem of service organizations to carry out a wide array of functions, many of them mission-critical. Through these loosely coupled networks of third parties, companies have been able to vastly expand their reach and capabilities, often extending around the world to create new and exciting market opportunities.

Learn more
${tab-5-img-alt}

Blockchain: A technical primer

Blockchain, in many ways, appears to signify the dawn of a new era as it relates to the way we store and exchange value. In fact, it can be considered one of the biggest technology breakthroughs in recent history, similar to the advent of the Internet in the early 1990s. At that time, the Internet provided a new and more sophisticated way to search and share information, a way that was much more efficient and transparent.

Learn more
${tab-6-img-alt}

How a SOC report works

Service organizations often find themselves serving many industries across multiple geographies, which expands the range of compliance and regulatory requirements they must meet. Under increasing compliance pressures, companies are asking their service organizations to demonstrate the efficacy of their controls to higher degrees. In some cases, SOC reports have become a pre-requisite for service organizations to win new business with established companies.

Learn more

Get in touch


Shannon Kramer
Shannon Kramer

Principal | Deloitte & Touche LLP
skramer@deloitte.com


Katherine Fortune Kaewert
Katherine Fortune Kaewert

Managing Director | Deloitte & Touche LLP
kfortune@deloitte.com

Did you find this useful?