Health IT and Electronic Health Activate your FREE membership today |  Log-in
5 pts.
 SAS70 Type II Standard migrating to ISAE3402 Standard
Most HMO's and health providers walks thru a series of regulatory compliance and conducts an internal and external audits in order to get certified or customer - client regulatory compliance requirements before winning the contract.

My question is, what are the effects, hindrances if there's any for the new standard ISAE3402 and how is it different from SAS70 Type II standard?



Software/Hardware used:
Microsoft
ASKED: May 14, 2011  1:29 AM
UPDATED: October 19, 2011  9:11 pm

Answer Wiki:
The more relevant standards that concern HMOs and health providers would be HIPAA and HITECH - SAS 70 and ISAE3402 are more of financial reporting standards that tech/data center companies used to use as their standard for operating excellence. If you're concerned with those standards, however, SSAE 16 and SOC 1, 2, & 3 reports are more relevant. You can read a comparison of all the standards and how SSAE 16 recently took the place of SAS 70 (which is now an outdated certification as of June 2011): <a href="http://www.onlinetech.com/secure-hosting/sarbanes-oxley-sox-compliant-hosting/sas-70-ssae-16-and-soc-comparison">SAS 70, SSAE 16 and SOC Comparison</a>
Last Wiki Answer Submitted:  October 19, 2011  9:11 pm  by  Tpham   105 pts.
All Answer Wiki Contributors:  Tpham   105 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: