SOX Professional Group

Featured Post

Trending Threads

  • We are a bank as well; I try my best to summarize the deficiencies to the Audit Committee.   I provide our SOX Committee with all of the details.  I provide the Audit Committee with a very high level summary of the "exceptions", issues we deemed not a ...

  • Thanks for the response.  To your point, in the example above, we expanded the sample to deem the issue isolated. Other examples would be (we're a bank) in regard to loan approvals.  The control is automated system routing for proper approval. The ...

  • In your example, I recommend first concluding whether it was a SOX control deficiency or not.   It sounds like there was a breakdown in the access provisioning control process.   Depending on root cause and your population/sample size, there may be ...

  • Hi all,  I'm looking for a few insights in how you all report your SOX findings to management/board of directors/audit committee. Currently, if a control breaks down, we're reporting it to our SOX Committee (management) and Audit Committee, even if ...

  • All, Hope all is well. I'm currently working with a SOX Compliance team that is looking for improve the SOX 302 disclosures process. Therefore, I would like to have some feedback from your side regarding tools and process improvements implemented ...

Quick Links

Latest Blogs