The new face of fraud: Combating impersonation and deepfake threat
Our publication emphasises the critical need for heightened vigilance and the implementation of robust security protocols to combat these sophisticated tactics.
- 4 items
In today’s business landscape, outsourcing remains a prevalent practice among organisations, which rely on third party service providers for cost-efficient access to various services and forms of support, including cloud and financial technology services, and human resource management.
Despite the benefits of outsourcing, it also exposes organisations to special risks, such as regulatory, reputational and operational risks through the potential loss of sensitive data, and possible disruptions to critical business services and financial reporting.
The management, board and shareholders of organisations demand confidence in the controls and compliance capabilities of suppliers, vendors and service organisations. They expect that organisations have the processes in place to effectively oversee third party arrangements.
Hence, organisations must ensure that third parties/ service providers meet a certain level of governance, rigour and consistency in order to build trust and be able to make outsourcing decisions with confidence.
How our third party trust services can help you
We have a team of dedicated professionals who are experienced and knowledgeable about third party risks, the relevant frameworks and assurance standards, controls identification and reporting. By identifying and managing key risks related to security, technology and third party relationships, we help your organisation maintain stakeholder trust and its reputation.
- Controls reporting
- Independent third-party audits/ vendor assessments
Controls reporting
1. Third party assurance reports
Through controls assurance reports like OSPAR, SOC 1 and SOC 2, third party service providers can accurately communicate information about their service controls and processes to potential clients.
In preparation for the issuance of these reports, our digital audit team can:
- Conduct a ‘pre-attestation’ readiness review, where we will work closely with your organisation to evaluate the adequacy of your existing controls with regards to reporting requirements and identify gaps and weaknesses.
- Assess your organisation’s control posture against relevant frameworks for the issuance of OSPAR and SOC2 reports in accordance with the ISAE3000 assurance standard.
- Assist your organisation with controls reporting to meet your customers’ financial reporting requirements (internal control over financial reporting) through the issuance of SOC 1 reports in accordance with the ISAE3402 assurance standard.
2. Other reports
Our digital audit professionals can help to evaluate your organisation’s controls design and operations, and communicate the information to specific stakeholders through independent reports issued under the ISAE 3000 / SSAE 3000 standard.
Examples of such reporting requirements include:
- The assessment of banks’ compliance with the Singapore Deposit Insurance Corporation (SDIC) requirements.
- The assessment of banks’ MAS Electronic Payment System (MEPS+) by the Monetary Authority of Singapore (MAS).
Our insights
Loading...
What have we learned from US tariffs and how to manage them?
Following US President Donald Trump's announcement on 2 April to introduce a broad range of punitive tariffs starting 9 July, there have been significant regulatory updates and varied company responses. Learn the latest developments and their implications for you.
PwC's Counter-Proliferation Financing: Best practices and guidance
ACIP Paper underscores increasing need for Counter-PF measures amid global focus on sanctions evasion and WMD risks.
Democratising access to private markets
Private markets and retail investors are converging in Southeast Asia as regulations and tech make diverse investments accessible to the mass-affluent.
Loading...
Follow us
