Sarbanes-Oxley (SOX) Compliance


The SOX Act of 2002 has dramatically increased the overall awareness and management of internal controls as it requires public companies to establish adequate internal controls over financial reporting. SOX has resulted in an increased focus on IT controls that support financial processing and therefore fall into the scope of management's assessment of internal control under Section 404 of SOX.


To comply with Sarbanes-Oxley, we help clients understand the areas where technology plays a critical part in the financial reporting process. During the SOX compliance review, we assist clients to focus on IT systems that are associated with significant business processes and material financial risks; this enables our clients to considerably reduce the scope of IT general control testing. Our consultants assess client’s IT landscape beyond segregation of duties matrix to identify and address risks where applicable.