Compliance: Sarbanes-Oxley
Policy and Procedures Documentation for a provider of Metropolitan
Area Network solutions
Our client needed numerous IT policies and procedures written to comply
with SOX. We performed compliance audit scoping, conducted extensive interviews,
and authored and revised dozens of IT policies and procedures.
SOX scoping effort for a provider of retail purchasing services
One of the top 20 visited websites required an understanding of the level
of effort required for achieving SOX compliance, with particular focus
on change control. We performed compliance audit scoping and created a
roadmap. Our full project scope report included a high-level gap analysis
and detailed resource requirements.
SOX scoping effort for a provider of retail purchasing services
Our client required an extensive General Computer Controls effort impacting
hundreds of users. We created a program for adoption of general computer
controls, delivering general computer control procedures documents and
training.
SOX 404 IT Internal Audit for a public regional commercial bank
Our client required readiness assistance for SOX 404/IT compliance. We
provided scoping, gap analysis, and controls testing. We identified numerous
gaps and provided remediation strategies to achieve SOX compliance.
SOX External Audit for a public regional commercial bank
We collaborated with a CPA firm partner for external audit of IT controls.
We tested those SOX IT controls, revides sampling procedures, and provided an Audit Report.
SOX security audit for prominent networking company
Our client needed to have a security assessment performed for SOX compliance.
We conducted a blind assessment of Internet visibility and exposure followed
by intrusion efforts. We located several security holes and advised our
client on resolution, creating policy guides and COSO references as required.
|
