Baker Tilly
Contact us
Steps of the U.S. Capitol Building

Sarbanes-Oxley (SOX) Compliance

Drive a more efficient and effective SOX compliance program.

Sarbanes-Oxley (SOX) Compliance

  1. Article
    Board members in a conference room

    FASB publishes conceptual framework Chapter 5 on recognition and derecognition

  2. Article
    Mandatory deemed repatriation under Sec. 965

    Considering an IPO? Time to factor in FASB public company accounting rules

  3. Article
    Baker Tilly delivers biohealth industry report on behalf of BioForward

    SEC adopts sweeping cybersecurity rules, requiring timely reporting of significant breaches

  4. Article
    Risks and controls RPA solutions

    Identifying risks and controls when implementing RPA solutions in a SOX environment

  5. Article
    Two professionals meet at a computer to review analytics

    Four key concepts to consider when using advanced reporting solutions in your SOX program

  6. Article
    Professionals come and go in a busy office building lobby

    What boards need to know about the SEC’s new executive compensation recovery (clawback) rule 

  7. Multimedia
    Man looking out from a mountaintop

    Agents of Change with Richard Chambers and Heather Acker

  8. Article
    Looking up at sunlight shining through trees

    The future of SOX and internal controls: incorporating ESG

  9. Article
    Government building with waving flag

    SEC issues new pay versus performance disclosure requirement

  10. Article
    panel discussion

    Model Audit Rule panel: life and P&C insurers

  11. Webinar
    Healthcare leadership team meeting

    Model Audit Rule panel: health plans

  12. Article
    Winding road leads to to the future

    Going public: a path for success

  13. Article
    Consultant uses technology to analyze data

    Groups urge SEC, other FSOC members not to wait for Congress on stablecoin oversight

  14. Webinar
    trees growing in a forest

    Going public via SPAC: what you need to know

  15. Article
    people working in offfice

    Control rationalization is key to optimizing SOX compliance

  16. Article
    Team members review successful project on a tablet

    Elevating IT SOX programs through PCAOB inspection results and staff outlooks

  17. Article
    Empty conference room in New York City

    ASC 842 compliance: What non-public entities can expect

  18. Webinar
    Real estate developer looks up at buildings in a city

    Real conversations: going public via SPAC

  19. Article
    Man analyzes a report at a computer

    As SPACs remain popular, here’s what you need to know

  20. Article
    SEC government building columns and blue sky

    SEC 2021 exam priorities: climate change, ESG and cybersecurity

  21. Article
    papers on desk

    SOX readiness: preparing for an IPO

  22. Article
    Woman accesses data analytics on a tablet in the office

    Managing your control environment in the midst of a pandemic

  23. Article
    Government building doors

    SEC ruling: summary of amendments to filer definitions and Sarbanes-Oxley (SOX) impacts

  24. Article
    Executive boardroom overlooking the city

    Don’t lose control during COVID-19

  25. Multimedia
    geometric ceiling

    Can your IT SOX program withstand the PCAOB?

  26. Article
    Long stretch of empty road

    Is your Sarbanes-Oxley (SOX) program efficient and effective? 

  27. Case Study
    Publicly traded manufacturer improves financial reporting control environment after SOX compliance review

    Publicly traded manufacturer improves financial reporting control environment after SOX compliance review

  28. Case Study
    Real estate investment trust (REIT) strengthens its financial, operational, and compliance related controls

    Real estate investment trust (REIT) strengthens its financial, operational and compliance related controls

  29. Case Study
    REIT improves business processes and operations while ensuring SOX compliance with outsourced internal audit function

    REIT improves business processes and operations while ensuring SOX compliance with outsourced internal audit function

  30. Article
    SEC Customer Protection Rule Initiative

    SEC Customer Protection Rule Initiative

  31. Article

    HIPAA Risk Assessments - why are they important and how to avoid the pitfalls?

  32. Case Study
    consultant reviews financial data on mobile devices

    SOC 2 report helps international printing company drive millions in sales

  33. Article
    Strategic planning resources, computer, calculator, financial reports

    Why all organizations should embrace certain SOX principles

  34. Case Study
    digital abstract global factory manufacturing

    Manufacturing company successfully realigns its global control environment

  35. Case Study

    GWG grows as life insurance secondary market gains acceptance

  1. Anthoney Casey

    Anthony Casey

    CIA

    Principal

  2. Mike Cullen

    Mike Cullen

    CISA, CISSP, CIPP/US

    Principal

  3. Emily Di Nardo

    Emily Di Nardo

    CPA, CITP, HITRUST CHQP

    Partner

  4. Matt Gilbert

    Matt Gilbert

    CISA, CRISC

    Principal

  5. Garrett Gosh

    Garrett Gosh

    CPA, CITP

    Partner

  6. Christopher Jeffrey

    Christopher E. Jeffrey

    Partner

  7. Jeff Krull

    Jeff Krull

    CPA, CISA, CITP

    Partner

  8. Madhu Maganti

    Madhu Maganti

    CPA, CISA, M.S.

    Partner

  9. Brian Nichols

    Brian Nichols

    CISSP, CIPP/US

    Principal

  10. Ben Quigley

    Benjamin Quigley

    PMP

    Principal

  11. Greg Reda

    Gregory Reda

    Partner

  12. John Romano

    John Romano

    CPA, CIA, CFE, CITP, CSM

    Partner

  13. Mallory Thomas

    Mallory Thomas

    CPA, MBA, CIA, CITP, CISA

    Partner

  14. Joe Shusko

    Joe Shusko

    CISA, PMP

    Principal

  15. Christopher J. Tait

    Christopher J. Tait

    MBA, CISA, CCSK, CFSA, CCSFP

    Principal

  16. Bosco Yuen

    Bosco Yuen

    CPA, CISSP, CISA, CIA, CSX, CCSA, PMP

    Partner

We help clients streamline their approach to SOX compliance, strengthen their internal controls framework and lower long-term compliance costs in the context of their business.

    Now, for tomorrow

    With the rapidly changing world and the continuous evolving strategic, compliance, financial and operational risk landscape, it is imperative to have the right talent supporting your SOX compliance program.

    Baker Tilly recognizes the need for a flexible approach. Key components to successful SOX compliance programs include collaboration with external audit and management, and a forward-thinking approach utilizing digital capabilities.

    Technology is advancing and so should your SOX program approach. Utilizing digital capabilities to deploy an effective SOX compliance program can help reduce time and impacts to your company while providing a quality compliance program.

    Flexible approach

    The needs of your company are evolving and perhaps your needs for supplemental resources to assist with SOX compliance may vary at times. We commonly see organizations need these types of assistance with SOX:

    • IPO readiness: Preparing for an initial public offering (IPO) requires many decisions, including decisions about your internal control structure and framework. We take into consideration where you are in the process of going public and your plans for the future of the business. We assist with the evaluation of your existing internal controls framework, including opportunities to leverage automated controls and support your environment by integrating enterprise resource planning (ERP) workflow.
    • Program optimization: A review of your internal control framework to identify opportunities to further optimize and enhance your internal controls.
    • Co-sourcing: We work closely alongside internal resources as an extension of your team. This may include additional assistance or expertise needed for identifying and documenting controls, your SOX compliance testing, or remediation of control weaknesses. We work collaboratively with internal audit departments to assist with the completion of internal control testing to support your SOX compliance program.
    • Out-sourcing: We can seamlessly be deployed as your internal audit function to help achieve your SOX compliance needs, working closely with and in alignment with management and external audit to help ensure compliance.

    Collaboration with external audit

    When working with clients, we often find the most successful compliance programs have collaborative relationships with management and external audit. Developing a collaborative relationship creates efficiencies for control owners and eliminates duplication of efforts. We work with external audit to support a reliance approach for the testing performed by internal audit.

    Digital SOX compliance optimization

    Embracing technology and automation in your SOX compliance program can yield significant time savings. The use of intelligent automation and automated controls through ERP workflows can create significant efficiencies.

    • Intelligent automation: In our testing approaches, we utilize robotic process automation (RPA) and scripts to automate manual tasks. This creates efficiencies for our team and minimizes manual tasks performed.
    • Automated controls: We work with our clients to utilize the ERP system and workflows to develop automated controls.
    • Data Analytics: We utilize data analytics to help guide our audit activities and better identify risks within our review.
    Management team meets to review benefits of Dynamic Costing™ analytics

    IT SOX compliance

    Your organization benefits from Baker Tilly’s deep knowledge of information technology general controls (ITGC) and our team’s ability to be highly effective working with your external audit.

    SOX insights

    1. Risks and controls RPA solutions

      Identifying risks and controls when implementing RPA solutions in a SOX environment

      This article highlights risks and controls for companies using RPA solutions in a SOX environment.
    2. Looking up at sunlight shining through trees

      The future of SOX and internal controls: incorporating ESG

      Internal audit has an important role in advancing the evolution of risk assessments, information aggregation, and reporting management in response to environmental, social and governance (ESG).
    3. Two professionals meet at a computer to review analytics

      Four key concepts to consider when using advanced reporting solutions in your SOX program

      This article highlights emerging technologies in the risk landscape that your IT components of your Sarbanes-Oxley (SOX) compliance function will need to be ready to respond to.
    4. papers on desk

      SOX readiness: preparing for an IPO

      Initial public offerings (IPOs) will require compliance with Sarbanes-Oxley (SOX). Learn more in this infographic.
    5. Man looking out from a mountaintop

      Agents of Change with Richard Chambers and Heather Acker

      Heather Acker, Baker Tilly risk advisory managing partner, and Richard Chambers, senior internal audit advisor at AuditBoard, discuss the importance of internal audit in an area of increased risk and disruption.
    They work collaboratively with us to identify opportunities to streamline our process and reduce our overall SOX compliance efforts on a continuous basis.
    Chief Financial Officer of a major public corporation

    Our strategic alliances

    AuditBoard and Workiva logos
    AuditBoard

    Together, Baker Tilly and AuditBoard provide clients with a solution that augments the transformation and optimization of their financial management, risk and compliance functions. The pairing combines deep advisory experience and insight with advanced audit technology to enhance GRC management. Read the press release.

    In this episode of Agents of Change, Heather Acker, risk advisory managing partner, and Richard Chambers, senior internal audit advisor at AuditBoard, share their perspectives on internal audit and the future of the profession.

    Workiva

    Baker Tilly and Workiva create value-driven offerings to transform and optimize an organization’s governance, risk and compliance (GRC) functions and support their ESG journeys with enhanced reporting insights. Through our alliance, Baker Tilly and Workiva can help organizations streamline risk management processes and compliance reporting within a cloud-based platform. Read the press release.

    Since we’ve transitioned to Baker Tilly, the team has helped us rationalize our control environment, update process documentation, and test the necessary controls. They also work collaboratively with us to identify opportunities to streamline.
    Chief Financial Officer of a public company

    Client stories

    1. Publicly traded manufacturer improves financial reporting control environment after SOX compliance review

      Publicly traded manufacturer improves financial reporting control environment after SOX compliance review

      Baker Tilly assisted management in re-engineering the IT SOX program within the company and completed the design and operating effectiveness testing of the internal control environment for IT SOX compliance.
    2. REIT improves business processes and operations while ensuring SOX compliance with outsourced internal audit function

      REIT improves business processes and operations while ensuring SOX compliance with outsourced internal audit function

      A REIT was looking for an outsourced internal audit function to assist with SOX compliance. Baker Tilly became the REIT's internal audit partner.
    3. digital abstract global factory manufacturing

      Manufacturing company successfully realigns its global control environment

      Baker Tilly assists manufacturer with Sarbanes-Oxley compliance.