Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: IT Governance for Sarbanes Oxley - IT Governance Issues Affecting Section 404 and Section 302

03/07/06

Permalink 07:04:11 am, Categories: Sarbanes Oxley, 247 words   English (US)

IT Governance for Sarbanes Oxley - IT Governance Issues Affecting Section 404 and Section 302

Corporate governance deals with how effectively and efficiently the "Tone at the Top" as defined by the CEO, top management and Board of directors is working. As far as governance is concerned IT governance also plays a very important role in the overall organizational governance. IT Governance consists of IT organization governance and Application & data governance. IT governance strangly affects the way risks are managed in an organization. A strong governance atmosphere ensures that the control environment which is a COSO component sets the right tone at the top. Similarly, with strong IT governance management can have some assurance that company level controls are working as intended.

So how does IT governance relates to Section 402 and Section 302 of the Sarbanes Oxley Act. Section 402 requires management to evaluate and assess the risks within the various business processes. Similarly, Section 302 deals with management certification. IT governance has a direct impact on the way process owners evalute processes, manage risks within processes, come up with control solutions and ensure controls are working effectively.

IT organization governance addresses the management of technology area within the organization. The other part of overall IT governance addressess issues relating to application owners. If both of these are properly defined and implemented in an organization, compliance with Sarbanes Oxley Sections 404 and 302 IT controls becomes much more streamlined if not easier.

Related Posts

Cost Effective Approach to Sarbanes Oxley
Sarbanes Oxley Record Retention
Implementing ERM Enterprise Risk Management Framework
4 Simple Steps in Designing Internal Controls

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP GRC Virsa Rule Sets Updates
  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • SAP BW Security Authorization Objects for SAP BW
  • more...

    • Search

    Google

    Web Big4Guy.com

    September 2008
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
    1 2 3 4 5 6 7
    8 9 10 11 12 13 14
    15 16 17 18 19 20 21
    22 23 24 25 26 27 28
    29 30          

    Misc

    Syndicate this blog XML

    What is RSS?