SlideShare a Scribd company logo

The Sane Solution To Sox Costs

Dwayne Jorgensen
Dwayne Jorgensen

Role of automation in good corporate governance.

BusinessTechnology
1 of 16
Download to read offline
The Sane Solution to Sarbanes-Oxley Costs Dwayne E. Jorgensen, CIA, CFE Consultant, Sarbanes-Oxley Services & IT Governance PROPRIETARY CONFIDENTIAL 1 The Sane Solution to Sarbanes-Oxley Costs
Who’s Watching the Store? Frequency Role Responsibility COSO SOX 302 SOX 404 Owner of internal Management controls and ongoing Ongoing Quarterly Annually monitoring Validators independent of Internal management, but part of Periodically Quarterly Annually auditors company External Validators independent of Annually Quarterly Annually auditors company PROPRIETARY CONFIDENTIAL 2 The Sane Solution to Sarbanes-Oxley Costs
Cost of SOX Implementation 2005 SOX Expenditure by US firms: $6 Billion Internal expenses: $2 Billion Hardware/Software: $2 Billion Consulting: $2 Billion 2006, 2007, etc. : ??? Source: Gartner PROPRIETARY CONFIDENTIAL 3 The Sane Solution to Sarbanes-Oxley Costs
So What’s a Corporation to Do? Continuous monitoring (CM) offers the only practical, cost-effective solution. Build a system that provides a perpetual inventory of governance Leverage IT to maximize automation and reduce staffing loads PROPRIETARY CONFIDENTIAL 4 The Sane Solution to Sarbanes-Oxley Costs
Proposed CM Solution Pyramid Oversight Component Oversight Component “Tone at the top”: “Tone at the top”: Executive buy-in, “spirit” vs. “letter” Executive buy-in, “spirit” vs. “letter” Planning Component Planning Component SOX methodology: SOX methodology: Assess, document, test, report Assess, document, test, report Co-sourcing component? Co-sourcing component? Independent IT test services Independent IT test services Software Component Software Component Various vendor process automation products: Various vendor process automation products: Ex.: Documentum®,, Movaris OneClose®,, ACL CCM® Ex.: Documentum® Movaris OneClose® ACL CCM® Hardware/Data Integrity Component Hardware/Data Integrity Component EMC: Centera®,, Proofspace encryption, record management automation EMC: Centera® Proofspace encryption, record management automation PROPRIETARY CONFIDENTIAL 5 The Sane Solution to Sarbanes-Oxley Costs
CM Solution Requirements Tool or process needed (examples Resources only): needed One Close® Monitoring ) SW Documentum® W/ Information & Communication (H ACL CCM/ gy Control Activities olo One Close® t.) hn gm , m le op Risk Assessment c Te One Close® Pe aff Organizational Control Environment (st Consulting PROPRIETARY CONFIDENTIAL 6 The Sane Solution to Sarbanes-Oxley Costs
Key Recommendation Validate methodology through execution on a pilot process (assess, document, and test) Remediate consistently and constantly Work with external auditor to ensure approach is satisfactory via a full trial on a key process before rollout PROPRIETARY CONFIDENTIAL 7 The Sane Solution to Sarbanes-Oxley Costs
Internal Control Maturity Model Initial Repeatable Defined Managed Optimizing Initial Control structure is not defined. Control occurs incidentally. Repeatable Control structure is not defined, but control processes may occur based on past success and management oversight. Defined Control structure is documented, standardized and integrated into control processes for the organization. Managed The control process is regularly assessed and tested. Detailed measures of the control process are collected and reported. Optimizing Continuous process improvement is enabled by quantitative feedback from the control process. Predictability, effectiveness and efficiency of an organization's internal controls improve as the organization moves through these five stages. PROPRIETARY CONFIDENTIAL 8 The Sane Solution to Sarbanes-Oxley Costs
COSO-Driven Methodology: Assess ASSESS ASSESS DOCUMENT TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Define overall SO requirements Management support Form Form Identify and form team team team Partner with external audit firm Internal champion Trained team Confirm audit universe Perform risk Perform risk Define risk weighting Consensus on objectives assessment assessment Conduct assessment Risk-ranked universe The plan Analyze assessment results Confirm Confirm Confirm risk rankings results results Map to knowledge base of mitigating practices Present findings to management Develop Develop Develop plan for documentation phase work plan work plan Review plan with external auditor, management PROPRIETARY CONFIDENTIAL 9 The Sane Solution to Sarbanes-Oxley Costs
COSO-Driven Methodology: Document ASSESS DOCUMENT DOCUMENT TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Define target maturity level by process COSO maturity ranking COSO COSO Assess COSO maturity by process alignment alignment Consensus on end state Identify where improvements are needed Improved controls environment Document Document Define control objectives Ongoing monitoring control control Determine tool approach activities activities Map assessment to objectives and identify gaps Documented controls Develop plan to address gaps with control changes Improve Improve Assess and implement changes in controls controls controls Test new processes and train users Define Define Confirm the role of the internal audit department monitoring monitoring Assess current monitoring environment process process Implement monitoring process PROPRIETARY CONFIDENTIAL 10 The Sane Solution to Sarbanes-Oxley Costs
COSO-Driven Methodology: Test ASSESS DOCUMENT TEST TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Management Management Educate management on controls Management control monitoring controls controls Develop framework for management monitoring Independent monitoring monitoring monitoring Facilitate management monitoring of controls Management reporting process Independent Independent Develop framework for independent monitoring Ongoing reporting internal audit internal audit Facilitate independent monitoring of controls Testing Testing Identify weaknesses from management test Material Material Develop action plan for weaknesses weakness plan weakness plan Reiterate if necessary Implement process for ongoing quarterly reports Ongoing Ongoing Define process for development of IC report report process report process Partner with external auditor on report requirements PROPRIETARY CONFIDENTIAL 11 The Sane Solution to Sarbanes-Oxley Costs
COSO-Driven Methodology: Report ASSESS DOCUMENT TEST REPORT REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Management reports on role in controls Management report Management Management Management reports on testing process report report External audit report Management delivers final controls report External assertion External External External audit commences audit audit External External auditor tests controls per requirements External control testing External auditor reviews management report control testing External auditor issues final report External External auditor auditor External auditor issues final assertion assertion assertion PROPRIETARY CONFIDENTIAL 12 The Sane Solution to Sarbanes-Oxley Costs
Benefits/ROI ROIs are easily calculated, by the determination of FTE reduction due to PCAOB’s Standard II regarding the testing of automated controls once, versus reiterative testing necessary for manual controls. Secondary benefit, especially in the ability to store the results of continuous monitoring in an authenticated, digital format, should have a significant impact on future third-party litigation revolving around alleged misconduct by management, in proving the validity of the effectiveness of key control activities. PROPRIETARY CONFIDENTIAL 13 The Sane Solution to Sarbanes-Oxley Costs
Questions? PROPRIETARY CONFIDENTIAL 14 The Sane Solution to Sarbanes-Oxley Costs
Thank You! PROPRIETARY CONFIDENTIAL 15 The Sane Solution to Sarbanes-Oxley Costs
Contact Information Dwayne E. Jorgensen, CIA, CFE Consultant 1851 Baltusrol Trail Duluth, GA 30097 Office: 678/957-0838 Mobile: 770/789-7581 E-mail: ddawg1960@charter.net PROPRIETARY CONFIDENTIAL 16 The Sane Solution to Sarbanes-Oxley Costs

Recommended

SCS Presentation - Corporate Governance
SCS Presentation - Corporate GovernanceSCS Presentation - Corporate Governance
SCS Presentation - Corporate GovernanceDwayne Jorgensen
 
COSO ERM
COSO ERMCOSO ERM
COSO ERMSophia Abigayle
 
Compliance in the framework of corporate governance (side panel 2) - Oliver O...
Compliance in the framework of corporate governance (side panel 2) - Oliver O...Compliance in the framework of corporate governance (side panel 2) - Oliver O...
Compliance in the framework of corporate governance (side panel 2) - Oliver O...e-Democracy Conference
 
Recent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management DevelopmentsRecent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management DevelopmentsInternational Federation of Accountants
 
Audit Committee Effectiveness
Audit Committee EffectivenessAudit Committee Effectiveness
Audit Committee EffectivenessMuhib Islam
 
CobIT presentation
CobIT presentationCobIT presentation
CobIT presentationMarc Vael
 
. Managing the Outsourcing _Governance final
. Managing the Outsourcing _Governance final. Managing the Outsourcing _Governance final
. Managing the Outsourcing _Governance finalGTTSlide
 
Foundations of Structual behavior
Foundations of Structual behaviorFoundations of Structual behavior
Foundations of Structual behaviorSajid Ali
 

Recommended

SCS Presentation - Corporate Governance
SCS Presentation - Corporate GovernanceSCS Presentation - Corporate Governance
SCS Presentation - Corporate GovernanceDwayne Jorgensen
 
COSO ERM
COSO ERMCOSO ERM
COSO ERMSophia Abigayle
 
Compliance in the framework of corporate governance (side panel 2) - Oliver O...
Compliance in the framework of corporate governance (side panel 2) - Oliver O...Compliance in the framework of corporate governance (side panel 2) - Oliver O...
Compliance in the framework of corporate governance (side panel 2) - Oliver O...e-Democracy Conference
 
Recent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management DevelopmentsRecent COSO Internal Control and Risk Management Developments
Recent COSO Internal Control and Risk Management DevelopmentsInternational Federation of Accountants
 
Audit Committee Effectiveness
Audit Committee EffectivenessAudit Committee Effectiveness
Audit Committee EffectivenessMuhib Islam
 
CobIT presentation
CobIT presentationCobIT presentation
CobIT presentationMarc Vael
 
. Managing the Outsourcing _Governance final
. Managing the Outsourcing _Governance final. Managing the Outsourcing _Governance final
. Managing the Outsourcing _Governance finalGTTSlide
 
Foundations of Structual behavior
Foundations of Structual behaviorFoundations of Structual behavior
Foundations of Structual behaviorSajid Ali
 
Opti Sustainability
Opti SustainabilityOpti Sustainability
Opti Sustainabilityopticonnectivity
 
Continuous Auditing D.French
Continuous Auditing D.FrenchContinuous Auditing D.French
Continuous Auditing D.FrenchDan French
 
Csi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass SgCsi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass SgTommy Seah
 
Csi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass KlCsi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass KlTommy Seah
 
OR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 SigmaOR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 SigmaImprovement Skills Consulting Ltd.
 
Agile User Experience
Agile User ExperienceAgile User Experience
Agile User ExperienceACM
 
Junwoo Park
Junwoo ParkJunwoo Park
Junwoo Parkpjunwoo365
 
OPTI Optimizer
OPTI OptimizerOPTI Optimizer
OPTI Optimizeropticonnectivity
 
PBOPlus - About Us
PBOPlus - About UsPBOPlus - About Us
PBOPlus - About Usadayal
 
Opti Products Overview
Opti Products OverviewOpti Products Overview
Opti Products Overviewopticonnectivity
 
SIM presentation Oct 9 2012
SIM presentation Oct 9 2012SIM presentation Oct 9 2012
SIM presentation Oct 9 2012sdlc_coach
 
Linkroad Corporate Snapshot
Linkroad Corporate SnapshotLinkroad Corporate Snapshot
Linkroad Corporate Snapshotmelvinyou
 
ITbuzz introduction Slides
ITbuzz introduction SlidesITbuzz introduction Slides
ITbuzz introduction SlidesComputer Aid, Inc
 
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)Neil Thompson
 
Advance controls 2013
Advance controls 2013Advance controls 2013
Advance controls 2013Zeeshan Khan
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Nadir Hussain
 
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von AspediensServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von AspediensRené Haeberlin
 
Pharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource CalculatorPharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource CalculatorTimothy Roe
 
NG BB 42 Visual Management
NG BB 42 Visual ManagementNG BB 42 Visual Management
NG BB 42 Visual ManagementLeanleaders.org
 
eMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at DelleMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at Delljoel_wright
 
Combining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal LeadershipCombining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal LeadershipDwayne Jorgensen
 
Tip of the Compliance Iceberg
Tip of the Compliance IcebergTip of the Compliance Iceberg
Tip of the Compliance IcebergDwayne Jorgensen
 

More Related Content

Similar to The Sane Solution To Sox Costs

Continuous Auditing D.French
Continuous Auditing D.FrenchContinuous Auditing D.French
Continuous Auditing D.FrenchDan French
 
Csi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass SgCsi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass SgTommy Seah
 
Csi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass KlCsi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass KlTommy Seah
 
OR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 SigmaOR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 SigmaImprovement Skills Consulting Ltd.
 
Agile User Experience
Agile User ExperienceAgile User Experience
Agile User ExperienceACM
 
PBOPlus - About Us
PBOPlus - About UsPBOPlus - About Us
PBOPlus - About Usadayal
 
SIM presentation Oct 9 2012
SIM presentation Oct 9 2012SIM presentation Oct 9 2012
SIM presentation Oct 9 2012sdlc_coach
 
Linkroad Corporate Snapshot
Linkroad Corporate SnapshotLinkroad Corporate Snapshot
Linkroad Corporate Snapshotmelvinyou
 
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)Neil Thompson
 
Advance controls 2013
Advance controls 2013Advance controls 2013
Advance controls 2013Zeeshan Khan
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Nadir Hussain
 
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von AspediensServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von AspediensRené Haeberlin
 
Pharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource CalculatorPharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource CalculatorTimothy Roe
 
NG BB 42 Visual Management
NG BB 42 Visual ManagementNG BB 42 Visual Management
NG BB 42 Visual ManagementLeanleaders.org
 
eMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at DelleMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at Delljoel_wright
 

Similar to The Sane Solution To Sox Costs (20)

Opti Sustainability
Opti SustainabilityOpti Sustainability
Opti Sustainability
 
Continuous Auditing D.French
Continuous Auditing D.FrenchContinuous Auditing D.French
Continuous Auditing D.French
 
Csi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass SgCsi Blackbelt Ia Masterclass Sg
Csi Blackbelt Ia Masterclass Sg
 
Csi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass KlCsi Blackbelt Ia Masterclass Kl
Csi Blackbelt Ia Masterclass Kl
 
OR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 SigmaOR Society workshop: Practical process improvement using Lean and 6 Sigma
OR Society workshop: Practical process improvement using Lean and 6 Sigma
 
Agile User Experience
Agile User ExperienceAgile User Experience
Agile User Experience
 
Junwoo Park
Junwoo ParkJunwoo Park
Junwoo Park
 
OPTI Optimizer
OPTI OptimizerOPTI Optimizer
OPTI Optimizer
 
PBOPlus - About Us
PBOPlus - About UsPBOPlus - About Us
PBOPlus - About Us
 
Opti Products Overview
Opti Products OverviewOpti Products Overview
Opti Products Overview
 
SIM presentation Oct 9 2012
SIM presentation Oct 9 2012SIM presentation Oct 9 2012
SIM presentation Oct 9 2012
 
Linkroad Corporate Snapshot
Linkroad Corporate SnapshotLinkroad Corporate Snapshot
Linkroad Corporate Snapshot
 
ITbuzz introduction Slides
ITbuzz introduction SlidesITbuzz introduction Slides
ITbuzz introduction Slides
 
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
Value Flow Science - Fitter lifecycles from lean balanced scorecards (2011)
 
Advance controls 2013
Advance controls 2013Advance controls 2013
Advance controls 2013
 
Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1Feb2008 Monthly Slides 1
Feb2008 Monthly Slides 1
 
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von AspediensServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
ServiceNow Event 15.11.2012 / Beispiele aus Kundenprojekten von Aspediens
 
Pharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource CalculatorPharmacovigilance Surge Resource Calculator
Pharmacovigilance Surge Resource Calculator
 
NG BB 42 Visual Management
NG BB 42 Visual ManagementNG BB 42 Visual Management
NG BB 42 Visual Management
 
eMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at DelleMetrics SF 2011 - Integrating Analytics and Testing at Dell
eMetrics SF 2011 - Integrating Analytics and Testing at Dell
 

More from Dwayne Jorgensen

Combining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal LeadershipCombining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal LeadershipDwayne Jorgensen
 
Tip of the Compliance Iceberg
Tip of the Compliance IcebergTip of the Compliance Iceberg
Tip of the Compliance IcebergDwayne Jorgensen
 
Sarbanes Oxleys Impact On The Coso Cube
Sarbanes Oxleys Impact On The Coso CubeSarbanes Oxleys Impact On The Coso Cube
Sarbanes Oxleys Impact On The Coso CubeDwayne Jorgensen
 
Cf O Magazine blog comment
Cf O Magazine blog commentCf O Magazine blog comment
Cf O Magazine blog commentDwayne Jorgensen
 
Tip Of The Compliance Iceberg
Tip Of The Compliance IcebergTip Of The Compliance Iceberg
Tip Of The Compliance IcebergDwayne Jorgensen
 
Need For Corporate Governance
Need For Corporate GovernanceNeed For Corporate Governance
Need For Corporate GovernanceDwayne Jorgensen
 

More from Dwayne Jorgensen (10)

Combining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal LeadershipCombining Corporate Governance with Internal Leadership
Combining Corporate Governance with Internal Leadership
 
Tip of the Compliance Iceberg
Tip of the Compliance IcebergTip of the Compliance Iceberg
Tip of the Compliance Iceberg
 
After Sarbanes Oxley
After Sarbanes OxleyAfter Sarbanes Oxley
After Sarbanes Oxley
 
Risk Factor 9 05 Issue
Risk Factor 9 05 IssueRisk Factor 9 05 Issue
Risk Factor 9 05 Issue
 
CEO Magazine 09 05
CEO Magazine 09 05CEO Magazine 09 05
CEO Magazine 09 05
 
Sarbanes Oxleys Impact On The Coso Cube
Sarbanes Oxleys Impact On The Coso CubeSarbanes Oxleys Impact On The Coso Cube
Sarbanes Oxleys Impact On The Coso Cube
 
Cf O Magazine blog comment
Cf O Magazine blog commentCf O Magazine blog comment
Cf O Magazine blog comment
 
Tip Of The Compliance Iceberg
Tip Of The Compliance IcebergTip Of The Compliance Iceberg
Tip Of The Compliance Iceberg
 
Corporate Governance
Corporate GovernanceCorporate Governance
Corporate Governance
 
Need For Corporate Governance
Need For Corporate GovernanceNeed For Corporate Governance
Need For Corporate Governance
 

Recently uploaded

Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...daisycvs
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...lizamodels9
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentationuneakwhite
 
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLJAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLkapoorjyoti4444
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwaitdaisycvs
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...amitlee9823
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceDamini Dixit
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876dlhescort
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...amitlee9823
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...allensay1
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableSeo
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPanhandleOilandGas
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayNZSG
 
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000dlhescort
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptP&CO
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756dollysharma2066
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfAdmir Softic
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...rajveerescorts2022
 

Recently uploaded (20)

Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLJAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
JAYNAGAR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
 
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai KuwaitThe Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
The Abortion pills for sale in Qatar@Doha [+27737758557] []Deira Dubai Kuwait
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceMalegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Malegaon Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 
PHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation FinalPHX May 2024 Corporate Presentation Final
PHX May 2024 Corporate Presentation Final
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
Call Girls In Majnu Ka Tilla 959961~3876 Shot 2000 Night 8000
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
 
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 

The Sane Solution To Sox Costs

  • 1. The Sane Solution to Sarbanes-Oxley Costs Dwayne E. Jorgensen, CIA, CFE Consultant, Sarbanes-Oxley Services & IT Governance PROPRIETARY CONFIDENTIAL 1 The Sane Solution to Sarbanes-Oxley Costs
  • 2. Who’s Watching the Store? Frequency Role Responsibility COSO SOX 302 SOX 404 Owner of internal Management controls and ongoing Ongoing Quarterly Annually monitoring Validators independent of Internal management, but part of Periodically Quarterly Annually auditors company External Validators independent of Annually Quarterly Annually auditors company PROPRIETARY CONFIDENTIAL 2 The Sane Solution to Sarbanes-Oxley Costs
  • 3. Cost of SOX Implementation 2005 SOX Expenditure by US firms: $6 Billion Internal expenses: $2 Billion Hardware/Software: $2 Billion Consulting: $2 Billion 2006, 2007, etc. : ??? Source: Gartner PROPRIETARY CONFIDENTIAL 3 The Sane Solution to Sarbanes-Oxley Costs
  • 4. So What’s a Corporation to Do? Continuous monitoring (CM) offers the only practical, cost-effective solution. Build a system that provides a perpetual inventory of governance Leverage IT to maximize automation and reduce staffing loads PROPRIETARY CONFIDENTIAL 4 The Sane Solution to Sarbanes-Oxley Costs
  • 5. Proposed CM Solution Pyramid Oversight Component Oversight Component “Tone at the top”: “Tone at the top”: Executive buy-in, “spirit” vs. “letter” Executive buy-in, “spirit” vs. “letter” Planning Component Planning Component SOX methodology: SOX methodology: Assess, document, test, report Assess, document, test, report Co-sourcing component? Co-sourcing component? Independent IT test services Independent IT test services Software Component Software Component Various vendor process automation products: Various vendor process automation products: Ex.: Documentum®,, Movaris OneClose®,, ACL CCM® Ex.: Documentum® Movaris OneClose® ACL CCM® Hardware/Data Integrity Component Hardware/Data Integrity Component EMC: Centera®,, Proofspace encryption, record management automation EMC: Centera® Proofspace encryption, record management automation PROPRIETARY CONFIDENTIAL 5 The Sane Solution to Sarbanes-Oxley Costs
  • 6. CM Solution Requirements Tool or process needed (examples Resources only): needed One Close® Monitoring ) SW Documentum® W/ Information & Communication (H ACL CCM/ gy Control Activities olo One Close® t.) hn gm , m le op Risk Assessment c Te One Close® Pe aff Organizational Control Environment (st Consulting PROPRIETARY CONFIDENTIAL 6 The Sane Solution to Sarbanes-Oxley Costs
  • 7. Key Recommendation Validate methodology through execution on a pilot process (assess, document, and test) Remediate consistently and constantly Work with external auditor to ensure approach is satisfactory via a full trial on a key process before rollout PROPRIETARY CONFIDENTIAL 7 The Sane Solution to Sarbanes-Oxley Costs
  • 8. Internal Control Maturity Model Initial Repeatable Defined Managed Optimizing Initial Control structure is not defined. Control occurs incidentally. Repeatable Control structure is not defined, but control processes may occur based on past success and management oversight. Defined Control structure is documented, standardized and integrated into control processes for the organization. Managed The control process is regularly assessed and tested. Detailed measures of the control process are collected and reported. Optimizing Continuous process improvement is enabled by quantitative feedback from the control process. Predictability, effectiveness and efficiency of an organization's internal controls improve as the organization moves through these five stages. PROPRIETARY CONFIDENTIAL 8 The Sane Solution to Sarbanes-Oxley Costs
  • 9. COSO-Driven Methodology: Assess ASSESS ASSESS DOCUMENT TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Define overall SO requirements Management support Form Form Identify and form team team team Partner with external audit firm Internal champion Trained team Confirm audit universe Perform risk Perform risk Define risk weighting Consensus on objectives assessment assessment Conduct assessment Risk-ranked universe The plan Analyze assessment results Confirm Confirm Confirm risk rankings results results Map to knowledge base of mitigating practices Present findings to management Develop Develop Develop plan for documentation phase work plan work plan Review plan with external auditor, management PROPRIETARY CONFIDENTIAL 9 The Sane Solution to Sarbanes-Oxley Costs
  • 10. COSO-Driven Methodology: Document ASSESS DOCUMENT DOCUMENT TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Define target maturity level by process COSO maturity ranking COSO COSO Assess COSO maturity by process alignment alignment Consensus on end state Identify where improvements are needed Improved controls environment Document Document Define control objectives Ongoing monitoring control control Determine tool approach activities activities Map assessment to objectives and identify gaps Documented controls Develop plan to address gaps with control changes Improve Improve Assess and implement changes in controls controls controls Test new processes and train users Define Define Confirm the role of the internal audit department monitoring monitoring Assess current monitoring environment process process Implement monitoring process PROPRIETARY CONFIDENTIAL 10 The Sane Solution to Sarbanes-Oxley Costs
  • 11. COSO-Driven Methodology: Test ASSESS DOCUMENT TEST TEST REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Management Management Educate management on controls Management control monitoring controls controls Develop framework for management monitoring Independent monitoring monitoring monitoring Facilitate management monitoring of controls Management reporting process Independent Independent Develop framework for independent monitoring Ongoing reporting internal audit internal audit Facilitate independent monitoring of controls Testing Testing Identify weaknesses from management test Material Material Develop action plan for weaknesses weakness plan weakness plan Reiterate if necessary Implement process for ongoing quarterly reports Ongoing Ongoing Define process for development of IC report report process report process Partner with external auditor on report requirements PROPRIETARY CONFIDENTIAL 11 The Sane Solution to Sarbanes-Oxley Costs
  • 12. COSO-Driven Methodology: Report ASSESS DOCUMENT TEST REPORT REPORT Remediate Ongoing coordination between management, external auditor, and consultant Process Outcomes Management reports on role in controls Management report Management Management Management reports on testing process report report External audit report Management delivers final controls report External assertion External External External audit commences audit audit External External auditor tests controls per requirements External control testing External auditor reviews management report control testing External auditor issues final report External External auditor auditor External auditor issues final assertion assertion assertion PROPRIETARY CONFIDENTIAL 12 The Sane Solution to Sarbanes-Oxley Costs
  • 13. Benefits/ROI ROIs are easily calculated, by the determination of FTE reduction due to PCAOB’s Standard II regarding the testing of automated controls once, versus reiterative testing necessary for manual controls. Secondary benefit, especially in the ability to store the results of continuous monitoring in an authenticated, digital format, should have a significant impact on future third-party litigation revolving around alleged misconduct by management, in proving the validity of the effectiveness of key control activities. PROPRIETARY CONFIDENTIAL 13 The Sane Solution to Sarbanes-Oxley Costs
  • 14. Questions? PROPRIETARY CONFIDENTIAL 14 The Sane Solution to Sarbanes-Oxley Costs
  • 15. Thank You! PROPRIETARY CONFIDENTIAL 15 The Sane Solution to Sarbanes-Oxley Costs
  • 16. Contact Information Dwayne E. Jorgensen, CIA, CFE Consultant 1851 Baltusrol Trail Duluth, GA 30097 Office: 678/957-0838 Mobile: 770/789-7581 E-mail: ddawg1960@charter.net PROPRIETARY CONFIDENTIAL 16 The Sane Solution to Sarbanes-Oxley Costs