Joseph Griffin

US Service Organization Controls (SOC)
Reporting Leader

Joe Griffin is an Atlanta, Georgia-based partner in PwC’s Risk Assurance practice. In this role, he is responsible for the delivery of information technology risk management, controls, and assurance services to financial services and technology industry clients in the Southeast. Joe possesses over 28 years of significant experience in helping Fortune 1000 companies possessing complex information technology environments effectively deal with the myriad of risk and control issues associated with the use of information technology.

During his tenure with the Firm, Joe has provided SSAE 16 (formerly SAS 70) services to an extensive number of large complex companies providing, among others, claims processing, student loan processing, trust processing, fund accounting, defined benefit and defined contribution processing, investment accounting, and information technology infrastructure services. Joe serves as one of the firm’s designated service organization controls specialists and today leads our internal third party assurance methodology working group. In these capacities, he routinely advises engagement teams and clients on technical matters involving service organization controls reporting.

He is a current member of the AICPA Service Organizations Task Force (which was responsible for the development of SSAE 16), presently chairs the AICPA Service Organization Attest Guide Task Force, and is a former member of the AICPA/CICA’s Trust Services Task Force. In addition, Joe is a frequent presenter for both PwC sponsored and AICPA sponsored training and seminars on service organization controls reporting topics. Joe earned his Bachelor of Science in Commerce and Business Administration from the University of Alabama. He is a Certified Public Accountant (CPA) and a Certified Information Systems Auditor (CISA).