SSAE 16 Report

Solution & Benefits Lifecycle Related Regulations

SSAE 16 Report Compliance Lifecycle

The SSAE 16 Report compliance lifecycle includes the following steps, all automatically enacted by the ProcessGene™ GRC Software Suite:

Lifecycle step SSAE 16 Report activity
SSAE 16 Report context establishment
  1. Definition of SSAE 16 Report compliance related business processes
  2. Delineation of process diagrams (optional)
  3. Definition of assets within the SSAE 16 Report scope
  4. Standardization and documentation of SSAE 16 Report regulations, policies and procedures
Risk identification
  1. Risk description, identification of risk stakeholders
  2. Risk classification and determination of heat-maps
  3. Risk assessment and measurement
  4. Determination of Key Risk Indicators (KRIs)
  5. Risk tolerance determination
Control determination
  1. Definition of controls to mitigate identified SSAE 16 Report risks
  2. Assignment of SSAE 16 Report control owners
  3. Scheduling and monitoring SSAE 16 Report control execution
  4. Assessment of residual risk levels
Requirement management
  1. Requirement definition
  2. Automated requirement workflow management
  3. Requirement fulfillment monitoring
SSAE 16 Report audit and remediation
  1. Definition and scheduling of SSAE 16 Report audit plans
  2. Definition of mechanisms for testing ongoing SSAE 16 Report compliance
  3. Collection, analysis and storage of SSAE 16 Report audit results
  4. Remediation plan definition, execution and follow-up
SSAE 16 Report related incident management
  1. Incident recording
  2. SSAE 16 Report related incident handling (using scheduled workflows)
  3. SSAE 16 Report related incident analysis and reporting
  4. Incident monitoring and follow-up
SSAE 16 Report certification
  1. Hierarchal SSAE 16 Report certification process determination
  2. Establishment of an automated SSAE 16 Report certification process
  3. Monitoring and reporting SSAE 16 Report certification status
  4. Archiving SSAE 16 Report certification history
Multi-Org management
  1. Determination of a global SSAE 16 Report compliance baseline with mandatory components
  2. Establishing a workflow for examining local (subsidiary) variants
  3. Enforcement of enterprise guidelines, regulations and frameworks within subsidiaries
  4. Control SSAE 16 Report compliance level both locally (per subsidiary) and globally from a central HQ cockpit

The ProcessGene™ SSAE 16 Report Software Users

The ProcessGene™ SSAE 16 Report compliance software provides value to the following users:
  1. C-level management (CEO, CFO, CIO, CRO, COO)
  2. Board of directors
  3. Compliance officers
  4. Internal auditors
  5. SSAE 16 Report compliance managers



Continue to: Related Regulations >