Webcast overview
One of the most frequently discussed topics is how to determine which IT systems and infrastructure should be in scope for ICFR.
In the latest installment of the Future of SOX webcast series, Sue King and Steve Estes, US SOX Leaders, and Subash Samuels, Principal, Internal Audit & Controls, will focus on how to determine which applications should be in scope. We will provide practical guidance for documenting your rationale and establishing a ‘defensible position’ for your decisions. The session will also cover the challenges presented by the increasing use of cloud services and the overall complexity of emerging technologies.
Specific topics of discussion include:
- Defining scope with confidence: Apply a practical framework to determine which IT applications and infrastructure should be in scope for ICFR.
- Building a defensible position: Develop effective strategies for documenting scoping decisions to create a clear rationale that stands up to auditor scrutiny.
- Navigating cloud complexity: Understand the specific impact of IaaS, PaaS, and SaaS models on scoping and learn how to address the associated risks.
- Preparing for emerging technologies: Identify how new technologies can impact your SOX program and what steps to take to maintain compliance.
- Justifying scoping decisions: Clearly articulate the "why" behind your scoping conclusions to stakeholders, management, and auditors.
