‘SOXing Up’ Business and IT Processes in a Global BPR Programme By Rakesh Dighe ACA, AMCT, CISA April 2007.

Slides:



Advertisements
Similar presentations
Revisiting the Purpose of the Firm: Executive Leadership Development in the Context of Corporate Governance Reform Catherine C. Giapponi Charles F. Dolan.
Advertisements

1 K P M G L L P A D V I S O R Y Changes in the IT Audit Profession Stephen G. Hasty, Jr. National Partner in Charge IT Advisory Savannah, GA January 4,
OMB Circular A-123, Appendix A
Renewed EU strategy for corporate social responsibility CSR by Ms Evelyne Pichenot, EESC member 10 April 2012 – Hong Kong.
Building on Our Core Values Building on Our Core Values © 2003 by the AICPA The Sarbanes-Oxley Act.
Contract Review Process Round Table Corporate Counsel Section April 11, 2007.
© 2007 PROSKAUER ROSE LLP® SARBANES-OXLEY ACT OF 2002 Presented by: Julie M. Allen
Recent Trends in U.S. Nonprofit Governance
Financial and Managerial Accounting
Who’s Minding the Store - Regulating the Securities Industry Securities and Investments.
Title Slide ProWorks for Sarbanes-Oxley (SOX) Compliance.
GREENBERG TRAURIG, LLP | ATTORNEYS AT LAW | Sarbanes-Oxley Act of 2002 Highlights for Foreign Private Issuers February 16, 2005 James P.S.
Chapter Twelve Financial Reporting and the Securities and Exchange Commission Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction.
IS3350 Security Issues in Legal Context
From Compliance to Competitive Advantage Eric Karofsky AMR Research
SEC Securities and Exchange Commission Acts and How They Can Be Improved.
Copyright 2006 Interactive Engineering Pty Ltd ORION General Legal The Sarbanes Oxley Act Turning legal text into active structure.
CREATING POWERFUL CONNECTIONS ENPORION CONFIDENTIAL Contract Life-Cycle Management Platts 6 th Annual Strategic Supply Chain Management for Utilities Conference.
Information Systems Infrastructure (IS3314) 3 rd year BIS 2006 / 2007 Fergal Carton Business Information Systems.
Deutsche Woche 2014, St. Petersburg, Alexander Mosyagin Deputy Chairman of Commerzbank (Eurasija) SAO Latest developments in Russian anti-money.
By pinank jani ADVANTAGES OF CORPORATION. TYPES OF CORPORATIONS Three types of corporations.
Introducing Accounting in Business
ISO Initiatives & CSR in the EU Deborah Evans Business Manager: Corporate Reporting & Assurance LRQA A member of the Lloyd’s Register Group.
STUST GMBA 2013 MA1N0227. O O n these cases, the use of "accounting techniques" that masked and hidden financial problems, which came to be thousands.
Copyright © 2012 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill/Irwin CHAPTER EIGHT ENTERPRISE APPLICATIONS: BUSINESS COMMUNICATIONS.
THE CORPORATION n Legal entity created to sell goods and/or services. n Owned by shareholders who purchase its stock. n Possible returns to shareholders:
Vijay V Vijayakumar.  SOX Act  Difference between IT Management and IT Governance  Internal Controls  Frameworks for Implementing SOX  COSO - Committee.
by. SAP case studies Means Successful stories of SAP customers
Scandals (in the public and private sector)  Enron  Worldcom  Livent  Nortel  HRDC  Sponsorship Scandal.
By: 1. Kenneth A. Kim John R. Nofsinger And 2. A. C. Fernando.
3 Operations ERP for Multiple Sites or Functions Administrative ERP Corporate HQ Distribution Operations Engineering Operations Manufacturing Operations.
By: 1. Kenneth A. Kim John R. Nofsinger And 2. A. C. Fernando.
1 Information Technology (IT) Auditing & Control Instructor: Dr. Princely Ifinedo Cape Breton University (CBU)
Is it Time to Change SOX? Orkhontuul Turmandakh MA1N0216.
Building Capacity on Protected Areas Law & Governance Module 7 International Law and PAs Exercise 1 Domestic Implementation of International Law.
Financial System The financial system in a country refers to the institutional framework existing to enable financial transactions to be carried out in.
Point of Sale Disclosure Reform? Getting compliant with the right technology.
KT ERP story with EAI Team 6 Kim Dae-sik, Lee Byung-gu, Kang Sun-pyung, Lee Han-gyul Management Information System.
a way of making things that is arranged so each person performs one task again and again.
1 SECURITIES REGULATION: TRENDS AND CHALLENGES Washington D.C., April, 15 th 2003 Dr. Doğan CANSIZLAR Chairman of the Capital Markets Board of Turkey Chairman.
Dell Supply chain Management. Introduction Dells success relies on the fact that it has a unique supply chain. Through the chain, it is able to get the.
Chapter 1 - An Introduction to Financial Management 08/28/08.
©2012 McGraw-Hill Ryerson Limited 1 of 20 Learning Objectives 4.Analyze the dealer’s role in pricing corporate securities. Evaluate the influence of issued.
MOIS 433 Presented by : Maha Baligh Extreme ERP Makeover.
Kenneth Cole Gets Serious About Sarbanes-Oxley Sarbanes-Oxley Group E: TonyMohammadLeo.
Chapter 11 Management Control of Information Technology.
By: Mark Nelson. Sarbanes-Oxley Overview Named after sponsors Senator Paul Sarbanes and Representative Michael G. Oxley Enacted on July 30, 2002 Contains.
Accountants often have to help customers find ways to cut costs and manage the bottom line.
1. Capital Markets (meaning, functions, and constituents); 2
Information Systems in Organizations 3. 1
Customized by Professor Ludlum December 6, 2016
Entrepreneurship and Management
The SEC and Corporate Social Responsibility Disclosures – Where Might We Go From Here? ADVANCED SUPPLY CHAIN COMPLIANCE SERIES October 24, 2016.
CIS 446 STUDY creative knowledge /cis446study.com
Common use cases Health care Legal Finance SLED Other
Information Systems in Organizations 3. 1
Chang-Tao, Morris Wu 2nd MBA Dec 15, 2008
Information Systems in Organizations 3. 1
Flipping Houses for Profit
شركات المساهمة​ (corporations) Joint stock company
الاستثمارات في الأسهم – المحاسبة وإعداد التقارير للمستثمر Stock Investments – Investor Accounting and Reporting إعداد :أ.نورا الداوود الفصل الثاني.
Economic vitality of sustainability.
Information Systems in Organizations 3. 1
Information Systems in Organizations 3. 1
Information Systems in Organizations 3. 1
Information Systems in Organizations 3. 1
Information Systems in Organizations 3. 1
WELCOME AUDIENCE.
Retail Business challenge
Presentation transcript:

‘SOXing Up’ Business and IT Processes in a Global BPR Programme By Rakesh Dighe ACA, AMCT, CISA April 2007

Legacy SOX Compliance Purpose of the Presentation GLOBAL BPR ROLL OUT HOW TO ENSURE CONTINUED SOX COMPLIANCE POST IMPLEMENTATION OF A GLOBAL BPR ROLL OUT AND LEVERAGE BENEFITS OF GLOBAL BPR FOR SOX?

Introduction ‘ Experience is the name everyone gives to their mistakes ’ Oscar Wilde

Business Context…. Before the Global BPR Roll Out:  SOX requirements had been newly introduced  Group was working hard to meet 1 st year of SOX attestation  Group had already spent a great deal of time and money to ensure SOX compliance of LEGACY processes

What is SOX Section404? The Public Company Accounting Reform and Investors Protection Act of 2002 (The “Sarbanes Oxley” Act)

…..what is SOX s404? US legislation passed in 2002 following the Enron and WorldCom failures Objective “to protect investors by improving the accuracy and reliability of corporate disclosures” Imposes new legal requirements on all companies listed on US stock exchange Applicable to Client as “foreign private issuer” from end 2006

Global BPR Roll Out Supply Chain Management Sell to Business Customer Procure Goods And Services Sell To Retail Customer People processes Finance and Support Services

…….Global BPR Roll Out Current State (2004) 158 ERPs 120 Management Information (MI) Systems 1200 IT applications tightly connected to ERP (out of applications) Multiple business processes Global SAP End-State (2012) <10 ERPs with standard SAP configuration and data supporting global business processes Standardised Global MI IT applications tightly connected to Global SAP

Implication of Global BPR Roll Out on SOX Compliance Major IT Program (Global SAP) Restructuring& Globalization Business Process Standardization 2006 SOX Compliance

Business Requirement ‘ Global BPR Roll Out to ensure new Business and IT Processes were SOX compliant before roll out at any SOX in scope location ’. OR Global BPR Roll Out would not be allowed to go-live.

Global BPR Response Centralised ‘SOX Centre of Excellence’ to support the Global BPR Roll Outs Performance standard: No SOX failures as a result of Global BPR Roll Outs 1)SOX Impact Assessment Analysis of SOX- relevant Global BPR projects rolling out in SOX Sensitive Countries 2)SOX Design Documentation Design, Creation and Quality-Control of SOX Controls 3) SOX Implementations Support Coordinate and drive implementation of SOX controls for Global BPR projects

Key Challenges Identify ALL Global BPR projects with SOX impact (~1,000+) Minimise the impact on project go-live dates Ensure the impact on business efficiency from the controls is minimised Ensure Global BPR controls met all Group SOX standards Ensure the business understands and operates the controls in an effective manner. Complete the work with minimal involvement of Global BPR team staff

Project Benefits of SOX COE Provides consistency: interpretation of standards, documentation approach, etc. ONE GLOBALLY Defined Set of SOX Controls and common implementation approach to support Global BPR objectives Reduces management strain on Global BPR project teams Can quickly propagate improvements in methodology Leverage central support: economies of scale Enables robust progress monitoring and prompt issue escalation

Post Implementation Optimisation controls 10 in-scope entities Total Number Of Controls And Tests controls 10 in-scope entities global controls (60%) performed once 100 local controls at 10 in-scope entities 790 Efficiency Automation Shared service 140 global controls Performed once 50 regional controls 3 locations 50 local controls 10 locations Start point 1/12/05 Automated Testing Tools 50% tests automated 400

Conclusion Context of Compliance Projects: Tight timelines set by regulators Impact of non compliance is CRITICAL (reputation and regulatory risk) In the early stages, definition of regulation is subjective Suggested approach to compliance projects: Define a framework (there are no right or wrong answers) Exercise good project management After 1 st year of attestation, seek opportunities to optimise the framework and reduce cost of compliance

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.