Sarbanes-Oxley: Essential Concepts for Successful Compliance - OAP424WEB

You will learn the requirements of SOX, key steps for effective compliance, how to focus on the relevant risks and controls, and ways to get buy-in throughout the organization to develop an effective entity-wide project plan for compliance.

The Sarbanes-Oxley Act: An Overview:

• Background and purpose
• Link to COSO 2013 and fraud
• Benefits beyond SOX compliance

Roles and Responsibilities:

• Board of Directors and Audit Committee
• Senior Financial Management
• Middle Management/Process Owners and other Personnel
• Internal Audit
• External Audit
• PCAOB

Key Compliance Cycle and Steps:

• Identifying key operational units and accounts
• The risk assessment
• Selecting, documenting and testing key control activities
• Documenting, correcting and re-testing deficiencies

Internal Controls over Financial Reporting (ICFR):

• Key controls
• Entity-level controls
• Process-level controls
• IT general controls
• Automated vs. manual controls
• Sampling and testing implications

Overview of key compliance requirements

Building a SOX Infrastructure:

• Internal considerations and sponsorship
• Building a process, not merely conducting a project
• Dealing with outsourced and foreign operations
• The role of IT
• Software products

Important developments and status update:

• Costs
• Management review and approvals
• System-generated reports and information provided by entity
• Mapping of COSO 2013 Principles and Points of Focus
• Relying on the work of others
• Testing over management judgment and estimates