Back

Include the audit criteria in the audit assertion's in scope system description.


CONTROL ID
16548
CONTROL TYPE
Audits and Risk Management
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain an in scope system description., CC ID: 14873

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Description criterion DC5 requires that the description disclose the applicable trust services criteria (that is, those that relate to the categories addressed by the description) and the related controls designed and implemented to provide reasonable assurance that the service organization's servic… (¶ 3.45, SOC 2® Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy, October 15, 2022)