November, 2014 - SOC Reporting

Topic

The future of SOC reporting is here:

  • SOC 1 guide and what it means to service auditors
  • SOC 1 audit risk alert and what it means to report users
  • New SOC 2/3 trust services framework: what it means to service auditors and report users
  • Strategic thinking: SOCR as an element of vendor risk management

Speaker(s)

Michael Podemski

Michael Podemski is a Senior Manager in the Advisory Services practice of Ernst & Young LLP. He focuses on IT assurance and advisory engagements, including Financial Audit IT Integration and Service Organization Controls Reporting (SOCR). Prior to Ernst & Young, he has 14 years of experience in IT internal audit, IT operations, and IT solutions delivery.

Michael has provided these services to companies comprising a wide range of industries including: consumer products, financial services, healthcare, professional services, and technology.

In addition to his role as a Senior Manager in the Advisory Services practice, Michael participates on the Central Region SOCR Team where he supports critical SOCR-focused quality and growth initiatives. He is also the co-lead of the Central Region Knowledge Champions Network where he is an advocate for knowledge management initiatives.

Finally, he is the president of the Chicago chapter of ISACA where he is executive head of the chapter and is looked upon as the local representative of ISACA by the membership and the community. The president directs chapter activities and efforts to ensure professional and personal growth for the membership. Previously, he was a program director and a media director supporting the chapter. In addition, he is a member of the Institute of Internal Auditors and the International Association of Privacy Professionals.

Emily Panici

Emily is a manager in the Advisory Services practice of Ernst & Young LLP with more than five years of experience. She specializes in financial audit IT integration and Service Organization Controls Reporting (SOCR) for a variety of clients in the airline, automotive, financial services, professional services, household appliances, manufacturing and online education industries.

Emily also participates on the EY Central Region SOCR Team where she supports critical SOCR-focused quality and growth initiatives. She is a subject matter resource of EY’s internal offshore resource management and audit technology initiatives.

Emily holds a Certified Information Privacy Technologist (CIPT) license, and is a member of ISACA and IAPP.

Material

Presentation Material