ISI Completes SSAE 16 Type II Audit

Toronto, Ontario – March 29, 2017 – Insurance Systems, the premiere provider of technology solutions to the Property and Casualty (P&C) insurance industry, today announced that it has successfully completed a Statement on Standards for Attestation Engagement No. 16 (SSAE 16) Type II examination for their ISI Enterprise Insurance Policy Administration Software System. Insurance Systems retained international business advisory firm Skoda Minotti for its SSAE 16 audit work in 2014. Insurance Systems and Skoda Minotti have continued their business relationship through this most recent engagement.

According to Terry Neilson, President & CEO of Insurance Systems, “Skoda Minotti is a leader in SSAE 16 and Service Organization Control (SOC) reporting and IT advisory solutions.”

Ben Osbrach, CISSP, CISA, QSA, CICP, CCSFP partner-in-charge of Skoda Minotti’s Risk Advisory Group says, “We were excited to work with Insurance Systems from the very start, they are an intriguing organization delivering high quality software services and this adds to our growing SOC reporting practice.”

SSAE 16, also known as a SOC 1, is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants. A SOC 1 report is performed by an independent auditing firm and examines the controls and processes involved in storing, handling, and transmitting data securely. The successful completion of the voluntary engagement illustrates Insurance Systems’ ongoing commitment to create and maintain the most stringent controls for the protection and security of its customers’ confidential information.

The rigorous SOC 1 Type II examination, which included detailed testing of Insurance Systems’ controls, was performed by an independent licensed Certified Public Accounting firm that specializes in conducting SOC reports, PCI DSS Compliance, FISMA, NIST and other regulatory information security assessments. The auditor examined Insurance Systems’ controls related to network connectivity, firewall configuration, secure software development life cycle, computer operations, database access, data transmissions, backup, disaster recovery, and more. Following the audit, Insurance Systems received a Service Auditors’ Report with an unqualified opinion, demonstrating that Insurance Systems’ policies, procedures, and infrastructure for data protection, security, and confidentiality met or exceeded the stringent SOC 1 requirements.

“The successful completion of our SOC 1 Type II examination audit provides our customers with the assurance that the controls and safeguards we employ to protect and secure their data are first-rate,” said Julian Hall, VP Technology. SOC Reports have become increasingly important for data-handling service providers since the passage of the Sarbanes-Oxley legislation, which requires a company’s business partners to have adequate internal controls. Insurance Systems’ customers can easily incorporate its Service Auditors’ Report in their Sarbanes-Oxley compliance programs as proof that appropriate controls are in place. The SOC 1 report can also help Insurance Systems’ customers to comply with other regulations, including HIPAA (Health Insurance Portability and Accountability Act), GLBA (Gramm-Leach-Bliley Act of 1999), and ISO 27001.

About Insurance Systems Inc.

Founded in 1997, ISI and its team of insurance professionals are dedicated to developing and implementing innovative software products for the property and casualty insurance industry. ISI’s flagship product, ‘ISI Enterprise’, is ideal for small to mid-size commercial and personal lines carriers ranging from $10 to $400 million in premiums written annually. The fully integrated software solution that enables insurers to increase operational efficiency and reduce IT costs by moving to a single, scalable platform. Headquartered in Toronto, Canada, the company has a vast client base of diverse property and casualty insurers. For more information, visit https://insurancesystems.com/. Connect with ISI on Twitter (@InsuranceSystms) and LinkedIn.