For time immemorial, software developers have been making false claims that their software platforms, applications, and tools are SOX compliant, SOC compliant, GDPR compliant, PCI-DSS compliant, ISO 27001 compliant, etc. The U.S. and International financial statement auditing standards prescribe three distinct but related standards auditors must adhere to when performing their due diligence responsibility of ensuring that financial statements accurately reflect the financial position of the company and the results of its operations. The three standards are the General Standards, the Standards of Fieldwork, and the Reporting Standards. So, don't be fooled, no single platform, IT service, or software tool can meet these procedural-centric planning, review, examination, and testing requirements.
Our Audit Tools Certification Team evaluates financial statement auditing software tools and platforms to determine their fitness for a particular purpose in the audit process. As a part of our "Public Benefit Obligation", we list the tools and platform our Auditing Tools Certification Team have certified and describe the particular purpose they are fit for in the audit process.
Financial statement auditors can select the appropriate toolset from our certified list of software testing and examination tools to aid in examination and testing during the Fieldwork Stage of the SOC, ICFR, or IT audit process. The engagement management and project management workflows and platforms on the list can be used to facilitate the planning stage of the audit process.
Our Audit Tools Certification Team evaluates financial statement auditing software tools and platforms to determine their fitness for a particular purpose in the audit process. As a part of our "Public Benefit Obligation", we list the tools and platform our Auditing Tools Certification Team have certified and describe the particular purpose they are fit for in the audit process.
Financial statement auditors can select the appropriate toolset from our certified list of software testing and examination tools to aid in examination and testing during the Fieldwork Stage of the SOC, ICFR, or IT audit process. The engagement management and project management workflows and platforms on the list can be used to facilitate the planning stage of the audit process.
Tool Evaluation Request Submission
CLOUD auditing tools are evaluated for use in specific areas and stages of AiCA CLOUD Auditing Framework. These areas include but are not limited to:
Send us a request to have your tool evaluated for fitness of a particular audit purpose based on AiCA CLOUD auditing framework. Our tool evaluation team will contact you to schedule a demonstration of your product features to determine the applicability to AiCA CLOUD Financial Statement Auditing Framework which implements AICPA SAS 104-111, SSAE 16 SOC 1, AT 101 SOC 2 & SOC 3, PCAOB AS5, COSO, COBIT, PCI-DSS. SOX 404.
The result of the tool or platform evaluation will be kept confidential and will not be discussed with other vendors. Vendors consent is required to post information about the applicability of the tool or platform to the members only website.
Access the "CERTIFY A TOOL" menu above to download the specific platform or tool evaluation questionnaire and then follow the "CERTIFICATION LAB" sub-menu to request a tool evaluation.
- Engagement Planning and Management
- Risk Assessment and Management
- SaaS Platform Functionality
- Pass Platform Functionality
- IaaS Platform Functionality
- User and Program Access Controls
- PaaS Security Controls
- Network Security Controls
- SaaS, PaaS, and IaaS-based API Controls
- Metadata Generation and Controls
- Workflow Process Level Controls
- Workflow Database and File Level Controls
- Electronic Evidence Gathering
- Electronic Evidence Custody.
Send us a request to have your tool evaluated for fitness of a particular audit purpose based on AiCA CLOUD auditing framework. Our tool evaluation team will contact you to schedule a demonstration of your product features to determine the applicability to AiCA CLOUD Financial Statement Auditing Framework which implements AICPA SAS 104-111, SSAE 16 SOC 1, AT 101 SOC 2 & SOC 3, PCAOB AS5, COSO, COBIT, PCI-DSS. SOX 404.
The result of the tool or platform evaluation will be kept confidential and will not be discussed with other vendors. Vendors consent is required to post information about the applicability of the tool or platform to the members only website.
Access the "CERTIFY A TOOL" menu above to download the specific platform or tool evaluation questionnaire and then follow the "CERTIFICATION LAB" sub-menu to request a tool evaluation.