SOX-CERT is a vendor neutral certification program that has been designed to prove that IT Compliance professionals have the knowledge and skills needed to understand and support Sarbanes-Oxley Act.
Internal Controls
• The Internal Control - Integrated Framework by the COSO committee
• Using the COSO framework effectively
• The control environment
• Risk assessment
• Control activities
• Information and communication
• Monitoring
• Effectiveness and efficiency of operations
• Reliability of financial reporting
• Compliance with applicable laws and regulations
• IT Controls
• IT Controls and Sarbanes Oxley Act Relevance
• Program Development and Program Change
• COSO Enterprise Risk Management (ERM) Framework
• Internal Environment
• Objective Setting
• Event Identification
• Risk Assessment
• Risk Response
• Control Activities
• Information and Communication
• Monitoring
• ERM – Application Techniques
• COBIT - the framework that focuses on IT
• Executive Summary
• Management Guidelines
• Framework
• Control Objectives
• Implementation Toolset
• Activities and Tasks
• Processes
• Domains
• Information criteria
• IT resources
• IT processes
• COBIT Cube
• Maturity Models
• Critical Success Factors (CSFs)
• Key Goal Indicators (KGIs)
• Key Performance Indicators (KPIs)
• Meeting the Information Security Requirements of SOX
• SOX and Risk Assessments
• IT Security
• The alignment of frameworks
• COSO and COBIT
• COSO ERM and COBIT
• ITIL and COBIT
• ISO/IEC 17799:2000 and COBIT
• ISO/IEC 15408 and COBIT
• COSO, COBIT and Sarbanes-Oxley Sections 302 and 404
• Testing, Reports and Documentation
• Reports used to Validate SOX Compliant IT Infrastructure
• Reporting Weaknesses and Deficiencies
• Documentation Issues
• SOX Testing
• Records Retention
• Real-time Disclosure
• Sarbanes Oxley and other regulations
• European Answer to SOX
• Integrating Sox IT security with GLBA, HIPAA and other regulations