On Demand

SAS 70 & CICA 5970 Compliance

---

On Demand: SAS 70 & CICA 5970 Compliance

The Protection of Business Critical Data & Applications is a Top Priority for CyberShift

As a leading provider of workforce and expense management software and services, CyberShift understands the level of trust that our clients place in us when they decide to use our On Demand (Software-as-a-Service) deployment model. They need to be confident in our ability to provide these business critical applications in a robust, secure manner while providing high availability, superior performance and clear accountability.

CyberShift takes these responsibilities very seriously and in compliance with the American Institute of Certified Public Accountants' (AICPA) Statement on Auditing Standards (SAS) and the Canadian Ministry of Chartered Accountants (CICA), CyberShift has completed, and continues to maintain, SAS No. 70 Type II and CICA 5970 audits. CyberShift has been certified through on-going independent audits performed on the design and effectiveness of CyberShift's controls and these audits assure our clients of our dedication to providing reliable and secure data access. The SAS 70 Type II and the CICA 5970 audit reports set standards which CyberShift has met or exceeded in the areas of security, access and compliance. These audits are a critical part of the many elements that comprise CyberShift’s program for providing the highest quality Software-as-a-Service (SaaS) offering to its rapidly growing client base.

In an increasingly global economy regulated by a range of government requirements, such as those of Section 404 of the Sarbanes-Oxley Act of 2002 (SOX), or the stringent privacy standards required by the European Union, it is more important than ever for service providers to demonstrate that they have adequate controls and safeguards in place when hosting or processing data belonging to their customers. Both the CICA 5970 and SAS 70 audit, or service auditor's examination, are widely recognized because they represent that a service organization has been through in-depth audits of their control activities, which generally include controls over information technology, information security and related processes and has had its control objectives – and adherence to them – examined by independent accounting and auditing firms.

By completing both SAS 70 Type II and CICA 5970 audits, CyberShift is able to provide our clients with a detailed description of the company’s controls and an independent, rigorous assessment of whether the controls were suitably designed and operating effectively over an extended period of time. Publicly traded companies often use these audits as proof of compliance with their own audit and SOX requirements for outsourced services. The completion of the CICA 5970 and SAS 70 Type II audits allows CyberShift to provide its clients with the documentation necessary to relieve them of the burden of initiating their own audit of CyberShift’s controls and safeguards to meet government and equity exchange regulations.

CyberShift believes that for organizations evaluating service providers, it is more important than ever that the providers can prove their ability to manage client data in a secure and consistent manner and in compliance with the highest industry standards. We also believe that our completion of the comprehensive SAS 70 Type II and CICA audits on an on-going basis demonstrates the quality and effectiveness of our operational procedures, controls, security architecture and IT infrastructure.

CyberShift's extensive expertise in the fields of Workforce Management and Expense Management allows us to offer advanced technology, multi-faceted functionality and flexible deployment options, including both license fee and On Demand (Software-as-a-Service) models to meet an organization's needs.

Contact us to learn how you can put The CyberShift Advantage to work for you!