TOKYO, April 9, 2012 -- Internet Initiative Japan, Inc., (IIJ, NASDAQ: IIJI, TSE1: 3774), one of Japan's leading Internet access and comprehensive network solutions providers, today announced that it received an SSAE16 Type 2 Report as detailed in the Statement on Standards for Attestation Engagements No. 16 (SSAE16) for its IIJ GIO Component Service on March 21, 2012.
In July 2011, IIJ revamped its operational systems for the IIJ GIO Component Service in preparation for receiving an SSAE16 Type 2 Report, and following an independent auditor’s examination, IIJ has newly received the auditor’s SSAE16 Type 2 Report. Now, users of the IIJ GIO Component Service can use this SSAE16 Type 2 Report as evidence in an internal controls evaluation or bring efficiencies to the external audit process.
In recent years, particularly for financial institutions, the trend of internal control reinforcement is accelerating. Since the Great East Japan Earthquake, many more companies are moving their servers to Cloud services for BCP and disaster recovery purposes. As part of this trend, the target of internal control evaluations have expanded to the entire system, including the Cloud environment as well as traditional data center services which had been covered in the internal control evaluation.
IIJ is a pioneer in the Cloud services field by being one of the first companies in the industry to receive an SSAE16 Type 2 Report, and we are examining the possibility of receiving SSAE16 Type 2 Reports for other services as well (*). We will continue our efforts to improve internal controls and security, and provide our customers with a variety of secure services.
SSAE16 is an attestation standard issued by the American Institute of Certified Public Accountants for evaluating the effectiveness of internal controls at companies engaging in outsourcing services and similar fiduciary operations. Type 2 Reports are attestations by an independent auditor of the appropriateness of the system description, the sufficiency of control objectives and related controls, and the operation effectiveness of those controls during the examination period.
(*) Currently we are preparing for an SOC2 (AICPA standard) Report, which is an attestation about security, and an SSAE16 Type 2 Report on the SaaS FX system IIJ Raptor Service.
For more information, please visit http://www.iij.ad.jp/en/news/pressrelease/2012/0409.html
- « Prev
- Next »