SSAE 18 Insights

What is SSAE 18?

SSAE 18 (Statements on Standards for Attestation Engagements No. 18) is an attestation standard developed by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA). It governs how service organizations report on the controls they have in place to protect customer data. It is commonly used to assure customers that their data handled by service organizations (e.g., cloud providers, SaaS companies, data centers) is secure and reliable. SSAE 18 replaced SSAE 16 and SAS 70 and provides a framework for SOC (Service Organization Control) reports, including SOC 1, SOC 2, and SOC 3.

Find organizations using SSAE 18 on Sumble →

What other technologies are related to SSAE 18?

SSAE 18 Complementary Technologies

SOC 1

SOC 1 reports on controls at a service organization relevant to user entities' internal control over financial reporting. SSAE 18 is the attestation standard used to perform a SOC 1 examination, making SOC 1 complementary.

mentioned alongside SSAE 18 in 5% (69) of relevant job posts

SOC 2

SOC 2 reports on controls at a service organization relevant to security, availability, processing integrity, confidentiality, or privacy. SSAE 18 is the attestation standard used to perform a SOC 2 examination, making SOC 2 complementary.

mentioned alongside SSAE 18 in 1% (99) of relevant job posts