Big4Guy

Confessions, Thoughts, Observations and Musings of a Big4Guy

Big4Guy

Welcome to Big4Guy.com. Big4Guy is an online resource where I will share with you the latest news, insights, knowledge and some experiences as a Big 4 consultant. We will discuss some of the important issues which organisations are facing today in the areas of information security, security and controls in SAP R/3, Oracle Applications, J.D.Edwards, Peoplesoft and various other ERP's. You will also find information on latest complaince regulations like Sarbanes Oxley, Basel II and so on. Big4guy will also attempt to provide valuable resources for individuals interested in examinations the CISA, CISM, CISSP, PMP and various other security certifications considered essential for entry in any Big 4 accounting, auditing and consulting firms. You are invited to post your comments and viewpoints to posts here. I sincerely hope this online journal will be useful to everyone from a budding student to a professional in the accounting, auditing, management and consultancy professions.

Post details: Analyzing the COSO Cube - Internal Control Dimensions

05/10/06

Permalink 09:06:51 am, Categories: Sarbanes Oxley, 244 words   English (US)

Analyzing the COSO Cube - Internal Control Dimensions

Section 404 puts the onus on the management to evalute the effectiveness of internal control based on a recognized framework. This means that management just cannot say that they have evaluated internal controls, but infact have to use an evaluation framework that is well recognized. Since the SEC specifically mentions COSO Internal Control Integrated Framework as an appropriate framework, many companies find it safe to follow it. However, other frameworks such as the Turnbull, CoCo, Kontrag are alos available. The COSO framework looks at internal controls across three dimensions. Let me try an explain using the COSO cube shown below:

Analyzing the COSO Internal Control Framework

First Dimension - COSO's first dimension covers the objectives of internal controls. This is shown on top of the COSO cube. These are bifurcated into operations, financial reporting and compliance. The three fold objectives translates into: a) an organization which runs effectively, b) financial reporting is accurately performed and c) organzation complies with all statutes.

Second Dimension - The second COSO dimension covers organizations and activities within the company. This is shown along the right side of the cube. Once the internal controls have been established, they apply
to all organizational units and activities of the company.

Third Dimension - The third dimension which forms the face of the COSO cube, covers specific activites which are required for effective internal controls. There are five specific activities mentioned namely control environment, risk assessment, control activities, information & communication and monitoring.

Related Posts

Section 404 Project Scoping , Sarbanes Oxley Investor Protection

Permalink Leave a comment

Comments:

No Comments for this post yet...

Official Websites

Categories


Archives

  • SAP GRC Virsa Rule Sets Updates
  • SAP MM Requirements for Setting up Plant
  • Lessons Learned Log for ASAP Implementation
  • SAP Solution Configuration Realization Phase
  • SAP MDM Master Data Import Manager Loading Data into SAP MDM
  • Compliance Calibrator SOD Conflicts Remediation Strategy
  • SAP Workload Analysis Monitor Tools ST03N
  • SAP BW Data Staging Basics Tutorial
  • How to Implement BW Infoobject Level Security
  • SAP BW Admnistrator Authorizations S_RS_ADMWB
  • BIW Reporting Auth Objects S_RS_COMP
  • SAP BW Security Authorization Objects for SAP BW
  • more...

    • Search

    Google

    Web Big4Guy.com

    September 2008
    Mon Tue Wed Thu Fri Sat Sun
    <<  <   >  >>
    1 2 3 4 5 6 7
    8 9 10 11 12 13 14
    15 16 17 18 19 20 21
    22 23 24 25 26 27 28
    29 30          

    Misc

    Syndicate this blog XML

    What is RSS?