This document outlines risks and controls common to the internal financial and management information process.

This is a sample email sent by the process owner to finance staff regarding the documentation of controls over spreadsheets as part of Section 404 SOX compliance.

This audit work program outlines steps for executing an IT project governance audit.

This policy establishes procedures for bereavement benefits, in order to provide employees sufficient time to attend services due to the loss of an immediate family member.

This memo can be sent to guarantors in order to confirm collection accounts.

This memo outlines a process for reviewing entity-level controls.

This memo outlines specifics to consider when drafting management responses to audit observations.

This memo describes the documentation requirements for each in-scope process related to Sarbanes-Oxley Section 404 compliance.

This memo summarizes the customized models used to prioritize financial statement elements (FSE) and processes for Sarbanes-Oxley (SOX) Section 404 compliance. The prioritization of the...

This memo documents a company's high-level testing strategy for Sarbanes-Oxley compliance.

This document outlines risks and controls common to the “define IT strategy and organization” process in a risk control matrix (RCM) format.

This memo documents an organization’s approach to Sarbanes-Oxley Section 404 compliance and concluding results from the annual assessment.