EisnerAmper’s approach to SOX compliance reflects our experience--across a broad range of industries, with companies both large and small--in achieving compliance and long-term integration of best practices and prevailing standards. Our methodology is predicated on a top-down comprehensive and risk-based approach which allows us to focus efforts on the most critical activities and enables us to provide a cost effective solution to clients.
We assist management and audit committees in assessing internal control risks, documenting processes for financial reporting, identifying control objectives and activities, the remediation of internal control gaps, and testing of internal control for effectiveness. EisnerAmper’s assessment and testing methodology is constantly evolving to reflect current best practice standards and to keep pace with the existing requirements of the SEC and PCAOB, aligns with the COSO Framework and the IT Controls for SOX published by the ITGI, and has been accepted by external auditing firms, including the “Big 4” and many national and local audit firms.
We, as a firm, have years of experience working with numerous companies on SOX compliance initiatives (including J-SOX compliance, which is the Japanese equivalent to the United States’ Sarbanes Oxley Act) with employees who hold professional designations such as CPA, CIA, CISA and many others. In addition, we also have experience working with web-enabled applications (i.e. Aline TM 4 SOX, Workiva) that provide data capture and reporting of SOX information, enhancing our ability to deliver services, add flexibility and ease of use, and provide real time access to all SOX 404 project sponsors. EisnerAmper personnel are also experienced with data mining and analysis (ACL, Access, Excel, etc...), security assessment tools and segregation of duties analysis tools.