As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!
Joined: May 26, 2008 Posts: 187 Location: Switzerland
Posted: Mon Nov 30, 2009 3:36 am Post subject: CSOX certification
There is no "official" exam or certification and no "official" institute that administers such an exam for people that work with Sarbanes-Oxley Act compliance or with implementing, maintaining or auditing the effectiveness of internal control over financial reporting.
It will also depend on the accounting standard that the company uses. Companies that use International Financial Reporting Standards (IFRS) are no longer required to do a reconciliation from IFRS to US GAAP. On the contrary companies that either use US GAAP as their primary accounting standard or that still have to do a reconciliation from some national accounting standard to US GAAP, may be more interested in people with knowledge in US GAAP. The Certified Public Accountant (CPA) exam that is administered by the American Institute of Certified Public Accountants (AICPA), which is the "official" organization of public accountants in the USA, both certifies knowledge in US GAAP and knowledge in auditing financial statements and auditing internal control over financial reporting.
An alternative is the Certified Internal Auditor (CIA) exam, which is administered by the Institute of Internal Auditors. However, the CIA exam deals with auditing internal control systems in general and does not specialize in auditing internal control over financial reporting and it also does not specialize in teaching you US GAAP.
Most information about the Sarbanes-Oxley Act can be found in the Act itself and in the US Securities and Exchange Commission (SEC)'s rules that implement the Act and in the Auditing Standards of the US Public Company Accounting Oversight Board on auditing internal control over financial reporting. All those sources are publicly available on the internet for free. In addition, several documents from the AICPA's Center for Audit Quality from the Big 4 accounting firms and from Protiviti are useful free sources.
Joined: Jan 12, 2006 Posts: 849 Location: Roanoke, Virginia
Posted: Fri Dec 18, 2009 11:04 am Post subject:
Hi - While the CSOX studies and certification process is valuable in gaining basic SOX knowledge, there is no official SOX certification as gmerkl noted. There are in fact "SOX certifications" offered by multiple organizations.
I'd recommend using the search button above and entering CERTIFICATION as a search term for some of our past discussions on this topic. While I feel it does have a little value for prospective employers, the CISSP or CISA are more prestigous because they are more intense and in-depth studies.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters. Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox. Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.