IT Control Objectives for Sarbanes-Oxley, 2nd Edition

This publication provides CIOs, IT managers, and control and assurance professionals with scoping and assessment ideas, approaches and guidance in support of the IT-related Committee of Sponsoring Organizations of the Treadway Commission (COSO) internal control objectives for financial reporting. A streamlined road map is provided to help turn compliance into a competitive challenge. Lessons learned and sustaining ideas are also included. The second edition is updated for recent US Securities and Exchange Commission (SEC) and Public Company Accounting and Oversight Board (PCAOB) guidance related to entity-level controls, a risk-based/top-down approach, application controls and the evaluation of deficiencies, as well as an update to COBIT 4.0 references.