Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kenneth A. Griggs, Rosemary Wild Orfalea College of Business, California Polytechnic State University, San Luis Obispo, CA, U.S.A.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Kenneth A. Griggs, Rosemary Wild Orfalea College of Business, California Polytechnic State University, San Luis Obispo, CA, U.S.A."— Presentation transcript:

1 Kenneth A. Griggs, Rosemary Wild Orfalea College of Business, California Polytechnic State University, San Luis Obispo, CA, U.S.A.

2 A Brief Outline Background & Motivation The Sarbanes-Oxley Act (SOX) The software vendor response to SOX Private versus public What worked, what failed Areas for potential convergence in eGoverment Conclusion

3 Background Employees of large accounting/consulting firms report problems in risk management and SOX compliance efforts SOX and related software tools publicly criticized as being ineffective Increasing interest by governments in risk management, security and SOX-like efforts

4 Motivation for the Work Increasing importance of security and accountability SOX & Euro SOX Software tool failure Can software tools be migrated from private to public?

5 What is Sarbanes-Oxley (SOX)? Sponsored by Senator Paul Sarbanes (Democrat- Maryland) and Representative Michael G. Oxley (Republican-Ohio) in 2002 Response to the Enron scandal 30,000 words and nearly seventy requirements designed to reform the governance, auditing, and reporting practices of American businesses.

6 Highlights of SOX Section 302 (Corporate Responsibility for Financial Reports) Section 401 (Disclosures in Periodic Reports) Section 404 (Management Assessment of Internal Controls) Section 409 (Real Time Disclosures) Section 802 (Record Retention Procedures and Violation Penalties)

7 Essential Elements of SOX The Control and Monitoring Environment Risk Assessment Accountability Audit

8 Software Tools in Internal Control The Sarbanes-Act stimulated the creation of an array of new software tools to assist in internal control, auditing, and SOX compliance.

9 Software Functional Areas

10 Risk Assessment Feedback Loop

11 Government & Private Sector Differences

12 Progression of SOX Compliance Activities

13 Government vs. Private Sector

14 SOX Software Failure Inflexibility Lack of integration capability Excessive complexity Fixed Workflow Process Narrative/Process Mapping problems

15 Characteristics of Software that Worked General purpose Team oriented Templatized Visual Narrow within a domain Handled unstructured data

16 Some Thoughts on the Differences Between Europe and the U.S. Differences in fraud – Enron vs. Parmalat –will the differences carry over? Variability among European states The role of the EU IT environment issues

17 Conclusion Software is immature SOX specific tools generally performed poorly SOX-specific tools need major modifications to be of use in government More unstructured data tools needed Team oriented tools are essential to success Government implementation could be a much harder problem to address

Download ppt "Kenneth A. Griggs, Rosemary Wild Orfalea College of Business, California Polytechnic State University, San Luis Obispo, CA, U.S.A."

Similar presentations

Nishidh, CISSP. To comply with Sarbanes oxley and other legislations To comply with industry standards and business partner requirements To protect.

Nishidh, CISSP. To comply with Sarbanes oxley and other legislations To comply with industry standards and business partner requirements To protect.
Contract Review Process Round Table Corporate Counsel Section April 11, 2007.

Contract Review Process Round Table Corporate Counsel Section April 11, 2007.
STORAGE MANAGEMENT/ GETTING STARTED: Storage Management 101 Everything you always wanted to know about Storage Management (but were afraid to ask) Stephen.

STORAGE MANAGEMENT/ GETTING STARTED: Storage Management 101 Everything you always wanted to know about Storage Management (but were afraid to ask) Stephen.
Sarbanes-Oxley Act of 2002 UAA – ACCT 316 – Fall 2003 Accounting Information Systems Dr. Fred Barbee.

Sarbanes-Oxley Act of 2002 UAA – ACCT 316 – Fall 2003 Accounting Information Systems Dr. Fred Barbee.
IT Governance Infocom India Presentation December 6, 2006.

IT Governance Infocom India Presentation December 6, 2006.
MODERN AUDITING 7th Edition

MODERN AUDITING 7th Edition
Forces of Change Don H. Hansen Health Care Services Partner 425.303.3013.

Forces of Change Don H. Hansen Health Care Services Partner
Correlation Risk in the Post-Enron World Professional Liability ExecuSummit September 21, 2004 Chris Duca Chris Duca Navigators Pro Navigators Pro September.

Correlation Risk in the Post-Enron World Professional Liability ExecuSummit September 21, 2004 Chris Duca Chris Duca Navigators Pro Navigators Pro September.
IS3350 Security Issues in Legal Context

IS3350 Security Issues in Legal Context
The Regulation Zoo: Dealing With Compliance Within The Firewall World

The Regulation Zoo: Dealing With Compliance Within The Firewall World
Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, 2002. Established.

Sarbanes-Oxley Act. 2 What Is It? Act passed by Congress in response to the recent and continuing corporate scandals. Signed into law July 30, Established.
Henri Yuan ITRN603 Fall 2014 Beyond Eron Scandal: Trade Implications on Corporate Social Responsibility of U.S. firms abroad.

Henri Yuan ITRN603 Fall 2014 Beyond Eron Scandal: Trade Implications on Corporate Social Responsibility of U.S. firms abroad.
Fraud Auditing Chapter 11.

Fraud Auditing Chapter 11.
Corporate Corruption, Integrity and Governance Symposium IOSCO - Global Standard Setter Jane Diplock AO Chairman New Zealand Securities Commission IOSCO.

Corporate Corruption, Integrity and Governance Symposium IOSCO - Global Standard Setter Jane Diplock AO Chairman New Zealand Securities Commission IOSCO.
1 Sarbanes-Oxley Section 404 June 29, 2005. 2  SOX 404 Background 3  SOX 404 Goals 4  SOX 404 Requirements 5  SOX 404 Assertions 6  SOX 404 Compliance.

1 Sarbanes-Oxley Section 404 June 29,  SOX 404 Background 3  SOX 404 Goals 4  SOX 404 Requirements 5  SOX 404 Assertions 6  SOX 404 Compliance.
Sarbanes-Oxley: where Information-Technology, Finance and Ethics Meet

Sarbanes-Oxley: where Information-Technology, Finance and Ethics Meet
WELCOME Annual Meeting & Compliance Seminar. Code of Conduct - Impact on Corporate Culture by Andy Greenstein Knight Capital Group, Inc.

WELCOME Annual Meeting & Compliance Seminar. Code of Conduct - Impact on Corporate Culture by Andy Greenstein Knight Capital Group, Inc.
Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.

Operational risk management Margaret Guerquin, FSA, FCIA Canadian Institute of Actuaries 2006 General Meeting Chicago Confidential © 2006 Swiss Re All.
1 SAP Security and Controls Use of Security Compliance Tools to Detect and Prevent Security and Controls Violations.

1 SAP Security and Controls Use of Security Compliance Tools to Detect and Prevent Security and Controls Violations.
Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset.

Adam Bearhalter Kristy Kelly Julie Bland Alex Tiset.

Similar presentations

Ads by Google