This site uses cookies to store information on your computer. Some are essential to make our site work; others help us improve the user experience. By using the site, you consent to the placement of these cookies. Read our privacy policy to learn more.

IT risk & assurance services

About this topic

These learning resources are designed to help you - whether working in a business or firm - establish and maintain proficiency in the areas of information and data management and analysis; IT risk and assurance services, including service organization controls (SOC) reporting; and information security and privacy, including the growing issue of cybersecurity.

Codification of Statements on Auditing Standards

Get the up-to-date information you need to conduct successful audits and provide high-quality services to your clients.

Publication Authoritative guidance Foundational

Codification of Statements on Standards for Attestation Engagements

This 2020 edition delivers the current clarified Statements on Standards for Attestation Engagements (SSAEs) and related interpretations in a codified format,...

Publication Authoritative guidance Foundational

Complete Guide to the CITP Body of Knowledge - CITP Exam Review Course

An in-depth and comprehensive review of the topics covered on the CITP exam.

Course – Online CITP credential preparation

Advanced SOC for Service Organizations Certificate Exam

Prove your ability to plan, perform and report on SOC 1 and SOC 2 engagements through this timed online exam.

Course – Online Service organizations Advanced

SOC 2® Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy

Gain an up-to-date, holistic understanding of SOC 2 and SOC 3® examination engagements. This guide will help you understand What goes into planning, performing and...

Publication Service organizations Intermediate

Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting (SOC 1(R)) - Guide

Get a deeper understanding of what's required and how to provide best-in-class in service organization control engagements. Glean insight from expert authors and see...

Publication Service organizations Intermediate

Technology risk: It’s more than cybersecurity

This column discusses the “silent killers” of technology risk that organizations must master to protect their business.

Article IT risk & assurance services Intermediate

SOC 2 Update

This archived webcast summarizes updates in the AICPA’s new guide: Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing...

Webcast Service organizations Foundational

Auditing in the Information Age

​In this archived webcast, we examine real life examples of how to transform the general ledger into an analytical tool and and more.

Webcast Continuous monitoring & governance Foundational

How to Start a SOC Practice

Learn to navigate this emerging area and create a niche practice to help your clients understand the benefits of SOC engagements.

Webcast Service organizations Foundational

Data analytics helps auditors gain deep insight

Technology provides opportunity to test full data sets rather than just samples.

Article Data analytics Foundational

Risk and Control of Information Systems

This CPE course provides you with the technical knowledge required for the CGMA exam related to strategic management accounting. This course examines the types of...

Course – Online Internal control Intermediate