5
Years as a staff / senior
9
Years as a Manager / Senior Manager
9
Years as
a Leader
3
Years as
a CAE
CPA, CISA
Professional  Certifications
Learn more

First, make SOX compliance easy for control owners. They have their day jobs, so simplifying control performance is what separates good from great. Second, to achieve this simplicity, you need a deep understanding of data flow within financial processes. Understanding how data moves from beginning to end helps determine the most efficient ways to use that data for control performance and monitoring.

From an internal audit and risk management perspective, our roadmap spans several years. In year one, we're focusing on increased collaboration with external auditors. Within our internal audit organization, we're establishing clear boundaries by separating into two teams: a controls focus team and an internal audit focus team. The controls team takes a consultative approach with first-line control owners, helping build out automations and streamlining processes—they're not involved in testing at all. Meanwhile, the independent internal audit team performs objective testing, specifically for SOX 404 compliance.

Though we're not typically salespeople, we need to effectively communicate our message to business stakeholders, executives, and committees. This means constantly evaluating how we tailor our message for different audiences. What helps with this sales aspect is proving our value to the business. Right now, that's primarily from a SOX perspective—showing how we can add value by streamlining the SOX process and piloting proof of concepts. The key is not just talking about value, but proving it through tangible results. It's about demonstrating real, measurable outcomes.

Subscribe to the Newsletter

Join 1K+ readers of Enabling Positive Change Newsletter for tips, strategies, and resources to improve your Internal Audit & SOX Compliance skill set.

Subscribe to begin

Join 1K+ readers of The Enabling Positive Change Newsletter for tips, strategies, and resources to improve your approach to Internal Audit and SOX compliance.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.