SOC2508. Maintaining the Essence of SOC Reporting in the Age of Automation

This session will explore how clients use GRC systems to help automate their evidence collection, reflect on AICPA attestation standards and auditing requirements that must still be followed when client’s provide automated evidence, and consider the need to still maintain auditor skepticism and apply professional judgement.

Learning Objectives:

• Understand the evolving market evolution of GRC systems used to automate evidence collection.
• Understand the fundamentals of appropriate audit procedures that must still be maintained even when interacting the GRC systems.
• Understand inherent risks and need for specialize audit procedures to use evidence sourced through GRC systems.