Sarbanes-Oxley Overview

Overview

Sarbanes-Oxley legislation. Although there have not been any changes in the legislative concepts of the law since its release in 2002, some aspects of executing the work have evolved. Sarbanes-Oxley was passed in 2002 and year one of attestation for publicly traded companies was 2004. Years later the legislation continues to challenge companies, auditors and compliance professionals when evaluating a company's control structure. SOX 404, although the most prominent, is only one of the many requirements covered under the legislation. In addition, the impetus of COSO 2013 has re-focused companies' efforts on evaluating their key controls. Companies must continually evaluate whether they have designed and identified the proper controls and have adequate tests in place to determine control efficiency. With the evolution of technology solutions, the impact of information systems changes must be continually evaluated to ensure controls are adequately addressed. 

Prerequisites

None

Objectives

• Examine initial challenges of the legislation
• Identify the connection of SOX to the COSO Internal Control Framework
• Evaluate the SOX 404 sequence of events and important updated components of each:
  • Accounting risk assessment
  • Process documentation
  • Sourcing risks
  • Documenting controls
  • Assessing design
  • Testing operation and reporting

Highlights

• Sarbanes-Oxley Compliance