Fraud risk assessement 2308

  • Hello:
    I have recently became aware that some external auditors expect their clients to provide a separate fraud risk assessment along with their SOX materials.
    We have documented many of our fraud risks throughout our various cycles’ narratives and control matrices (including entity level risks and controls), but I am I to believe that we should create a new dedicated fraud risk assessment? I cannot find where this is specifically spelled out in the Act, but if anyone can share their experiences with a First Year greenie, I’d appreciate it.

Log in to reply