Presentation is loading. Please wait.

Presentation is loading. Please wait.

Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset."— Presentation transcript:

1 Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset

2 Introduction Corporate & Accounting Scandals Public confidence Signed in July 30, 2002 Reach

3 Titles TITLE I—PUBLIC COMPANY ACCOUNTING OVERSIGHT BOARD TITLE II—AUDITOR INDEPENDENCE TITLE III—CORPORATE RESPONSIBILITY TITLE IV—ENHANCED FINANCIAL DISCLOSURES TITLE V—ANALYST CONFLICTS OF INTEREST TITLE VI—COMMISSION RESOURCES AND AUTHORITY TITLE VII—STUDIES AND REPORTS TITLE VIII—CORPORATE AND CRIMINAL FRAUD ACCOUNTABILITY TITLE IX—WHITE-COLLAR CRIME PENALTY ENHANCEMENTS TITLE X—CORPORATE TAX RETURNS TITLE XI—CORPORATE FRAUD AND ACCOUNTABILITY

4 Key Provisions 1. SOX Section 302: Internal control certifications 2. SOX Section 404: Assessment of internal control 3. SOX Section 802 Criminal Penalties for Violation of SOX 4. SOX Section 1107 Criminal Penalties for Retaliation Against Whistleblowers

5 SOX Section 404 Management must report on the effectiveness of the company's internal controls over financial reporting. A statement of management's responsibility over internal controls Management's assessment of the effectiveness of the company's internal control Identify the framework used to evaluate controls State that their auditor has reported on their internal controls as well www.sec.gov

6 SOX Section 404 In today’s business environment IT systems initiate, process, and report most financial transactions Because they are so involved in the day to day financial transactions, the IT systems become key to financial reporting Making the controls over the IT systems key to financial reporting as well IT Governance Institute, 2006

7 SOX Section 404 Management is required to implement an internal control framework. COSO is most widely used framework for SOX compliance Pays little attention to IT controls COBIT is one of the better known frameworks that relate to IT controls IT Governance Institute, 2006

8 Key Controls Controls that are key to ensuring that the values on the balance sheet are accurate and reliable Database triggers entry in general ledger. System to ensure emails are sent IT Auditor ensures that they are effective, reliable, and reproducible

9 General Controls Controls that go across all IT systems and are essential to ensuring the integrity, reliability, and quality of the systems Security Policies Change Management Administration of Duties/Rights

10 Separation of Duties Individual Permissions Roles Least Privilege Individual only given privileges needed to do their job User Provisioning New users set up with correct privileges Standard profile for each user

11 What if these 3 principles are not in place? The IT system has failed to meet SOX Compliance The Auditor must: Note the exception Flag it up to Management for remediation

12 Strategies for Sarbanes-Oxley Compliance Understand SOX requirements Set aside sufficient resources Get everyone involved Create independent audit committee Educate everyone Evaluate auditors Make required changes Prepare for the future Source: www.afponline.org

13 Impact of SOX on IT and Management Risk Assessment Control Environment Control Security Monitoring Information and Communication Source: www.answers.com

14 Impact of SOX Risk Assessment Areas of Risk Examination of systems Accuracy of Documentation Control Environment Effectiveness of IC’s Tone of Organization Control Environment Factors Source: www.answers.com

15 Impact on Sox Control Security IT Security Monitoring Processes and Schedules Internal Audits Information and Communication Timely and Accurate Information Communication to Management Source: www.answers.com

Download ppt "Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset."

Similar presentations

Sarbanes-Oxley Act of 2002 UAA – ACCT 316 – Fall 2003 Accounting Information Systems Dr. Fred Barbee.

Sarbanes-Oxley Act of 2002 UAA – ACCT 316 – Fall 2003 Accounting Information Systems Dr. Fred Barbee.
1 4 th session: Corporate Governance – Sarbanes Oxley Performance Evaluation IMSc in Business Administration October-November 2009.

1 4 th session: Corporate Governance – Sarbanes Oxley Performance Evaluation IMSc in Business Administration October-November 2009.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Control and Accounting Information Systems

Control and Accounting Information Systems
Control and Accounting Information Systems

Control and Accounting Information Systems
Audit Committee in Albania Legal framework Law 9226 /2006 “On banks in Republic of Albania” Law 9901/2008 “On entrepreneurs and commercial companies” Corporate.

Audit Committee in Albania Legal framework Law 9226 /2006 “On banks in Republic of Albania” Law 9901/2008 “On entrepreneurs and commercial companies” Corporate.
Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.

Tax Risk Management Keeping Up with the Ever-Changing World of Corporate Tax March 27, 2007 Tax Services Bryan Slone March 27, 2007.
ISecurity Compliance with Sarbanes-Oxley & COBIT.

ISecurity Compliance with Sarbanes-Oxley & COBIT.
Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, 2002. Established.

Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, Established.
1 Introduction of Panel Members Sarbanes-Oxley Section 404 Overview Insert Worlds Image / Client Specific Image Here Scott Henderson

1 Introduction of Panel Members Sarbanes-Oxley Section 404 Overview Insert Worlds Image / Client Specific Image Here Scott Henderson
McGraw-Hill/Irwin Copyright © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 The Role of Government.

McGraw-Hill/Irwin Copyright © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 6 The Role of Government.
The Islamic University of Gaza

The Islamic University of Gaza
1 Sarbanes-Oxley Section 404 June 29, 2005. 2  SOX 404 Background 3  SOX 404 Goals 4  SOX 404 Requirements 5  SOX 404 Assertions 6  SOX 404 Compliance.

1 Sarbanes-Oxley Section 404 June 29,  SOX 404 Background 3  SOX 404 Goals 4  SOX 404 Requirements 5  SOX 404 Assertions 6  SOX 404 Compliance.
15-1. 15-2 15 Fraud and SOX Compliance McGraw-Hill/Irwin Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.

Fraud and SOX Compliance McGraw-Hill/Irwin Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved.
SOX and IT Audit Programs John R. Robles Thursday, May 31, 2007 Tel: 787-647-396.

SOX and IT Audit Programs John R. Robles Thursday, May 31, Tel:
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Sarbanes Oxley Act (Sox) Corporate and Auditing Accountability, Responsibility and Transparency Act of 2002 Rick Stephan Hayes, Ph.D., CPA California State.

Sarbanes Oxley Act (Sox) Corporate and Auditing Accountability, Responsibility and Transparency Act of 2002 Rick Stephan Hayes, Ph.D., CPA California State.
Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.

Standar Pekerjaan Lapangan: Pemahaman Memadai atas Pengendalian Intern Pertemuan 5.
Sarbanes-Oxley Act of 2002 Ernesto G. Rodriguez EC 521 Winter 2007.

Sarbanes-Oxley Act of 2002 Ernesto G. Rodriguez EC 521 Winter 2007.
Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.

Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.

Similar presentations

Ads by Google