Wipfli logo
Back to Webinars

Cert stacking: A new approach to third-party audits

Jacqueline Cooper
Jacqueline Cooper
Sep 17, 2024

Third-party audits are an important part of vendor risk management. They can also become overwhelming. Multiple audits of the same environment may be required to satisfy client requirements (e.g., SOC, HITRUST, ISO 27001).

This webinar introduces another, more efficient option: certification (cert) stacking.

Learn how to pursue a single, coordinated audit that addresses multiple technical environments and client requirements. Our free webinar covers the benefits of cert stacking, plus best practices for coordinating such audits.

Watch the webinar to learn how to:

  • Define a consistent scope for cert-stacked audits to maximize efficiency.
  • Share evidence and test procedures across multiple audits to reduce redundancy.
  • Coordinate test timing to meet individual audit criteria.
  • Align teams, engagement managers and auditors.

The webinar addressed common issues with cert stacking, from managing too many environments to too much complexity.

When cert stacking is feasible, it can help your organization save valuable time. And it shows off the strength of your security and technology controls.

Author(s)

Jacqueline Cooper
Jacqueline Cooper
CPA, MBA, CCSFP, CISA, Senior Manager, Wipfli Advisory LLC
View Profile
Karen Johnston
Karen Johnston
CCSFP, CIA, CISA, CCSFP-CHQP, Partner, Wipfli Advisory LLC
View Profile

TOP PICKS

Robert Zondag
Robert H. Zondag 12/04/2025
Wealth management firms: Is it time to embrace crypto?
Read full story
Robert Zondag
Robert H. Zondag 11/24/2025
After the GENIUS Act, should your bank offer cryptocurrency services?
Read full story
Kevin Smith
Kevin Smith 11/20/2025
2026 tech industry forecast: In the AI era, should mid-market firms look to the human?
Read full story