Statement on Auditing Standards No. 70, commonly referred to as SAS 70 .
SAS 70 is the most widely recognized professional auditing standard. Developed by AICPA (American Institute of Certified Public Accountants), SAS 70 represents the professional guidelines that CPAs (certified public accountants) must follow when conducting audits.

This certification means that managed hosting provider has implemented controls and processes to minimize the potential for loss of internal or non-customer related systems and customer related systems (monitoring applications, devices and tools) due to intentional or unintentional events.
SAS 70 data centers have to maintain prescribed levels of data security and redundancy, as well as personnel controls. These requirements include a full assessment of the following elements:

o Firewall configuration and access
o Database access
o Data transmissions
o Data backup and recovery
o Application security
o Product development

In addition, data center staff cannot access servers or data without a specific procedure. All systems access and activity must be logged, and all physical access is highly controlled.

Popularity: 10% [?]