SOX requires an Internal Control Report that states management is responsible for an adequate internal control structure for their financial records. Any shortcomings must be reported up the chain as quickly as possible for transparency and a measurement of how well your company manages its internal controls. While SOX doesn’t specifically mention information security, for practical purposes, an internal control is understood to be any type of protocol dealing with the infrastructure that handles your financial data.
The Act mandates a number of reforms to enhance corporate responsibility, enhance financial disclosures and combat corporate and accounting fraud. As such a committee was formed, the “Public Company Accounting Oversight Board,” known as the PCAOB, to oversee the activities of the auditing profession. wherever that may be.
Learn how we align our exceptional experience as a leading IT Managed Service Provider to bring measurable benefits to your organization