COSO

In this tool, we’ve compiled a guide that includes a systematic, disciplined approach to evaluating and improving the ef...

This document provides three sample work programs focused on monitoring and auditing entity-level controls.

COSO has released supplemental guidance on how to effectively apply the 2013 Internal Control — Integrated Framework (IC...

This tool can be used as a general guide for process owners assessing risks and managing internal controls.

This sample establishes guidelines and responsibilities for creating a quality assurance function charter.

This document contains two sample audit reports that can be used to document management’s assessment of internal control...

This tool provides questions organizations should consider when implementing an enterprise risk management (ERM) strateg...

This sample audit report can be used to review and better understand an organization’s IT compliance process.

This tool provides an overview of an organization’s Sarbanes-Oxley (SOX) Section 404 compliance process and illustrates ...

This sample questionnaire provides several COBIT areas and related control objectives for each IT general control.

This sample includes a list of questions to consider while checking an organization’s entity-level controls for fraud.

This questionnaire template provides a number of COSO elements and their related control objectives for entity-level con...