Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: Sarbanes Oxley Compliance Series - 5 Steps on How to Ensure Better Sarbanes Oxley Controls Compliance

02/02/06

Permalink 08:32:08 pm, Categories: Sarbanes Oxley, 211 words   English (US)

Sarbanes Oxley Compliance Series - 5 Steps on How to Ensure Better Sarbanes Oxley Controls Compliance

I discussed in my earlier posts that continous controls monitoring can be the key to better Sarbanes Oxley compliance. With year one of Sarbanes Oxley behind us, how does a company sustain Sarbanes Oxley compliance through continous monitoring. I normally suggest companies a step by step SOX compliance action plan. A recent local survey showed that company's having continous monitoring of controls in place have a much better compliance track record. Then, if continous monitoring is so important, I felt it relevant to discuss a step by step action plan for SOX controls compliance.

1. Choose the right business areas to monitor. Areas can be chosen based on high risk, high value, transaction volumes etc.
2. Once broad areas are known, identify the specific controls within the area that you would like to monitor.
3. The controls identified need to be mapped to business processes so as to judge their relevance. Gather adequate data to test the controls.
4. Assess the control data gathered for appropriateness, availability, and completeness.
5. Lastly, there has to be a specific policy for managing exceptions identified. Such exceptions need to be remediated based on an action plan.

Related Posts >>

>> Sarbanes Oxley 404 Softwares
>> Sarbanes Oxley & Investor Protection
>> Services Outside the Scope of Auditor
>> SOX for US Divisions of Foreign Companies

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP Netweaver BI Business Intelligence Basics
  • SAP GRC Virsa Rule Sets Updates
  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • more...

    • Search

    Google

    Web Big4Guy.com

    January 2009
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
          1 2 3 4
    5 6 7 8 9 10 11
    12 13 14 15 16 17 18
    19 20 21 22 23 24 25
    26 27 28 29 30 31  

    Misc

    Syndicate this blog XML

    What is RSS?