Gebraucht kaufen
EUR 4,18
Gebraucht: Sehr gut | Details
Verkauft von QualityBargainBooksDE
Zustand: Gebraucht: Sehr gut
Kommentar: Qualifiziert für Amazon Prime und Versandkostenfreiheit, Amazon-Kundenservice und Rücknahmegarantie. 100% Zufriedenheitsgarantie. Sehr guten Gesamteindruck mit leichten bis mäßigen Verschleiß. Hat mit Schutzumschlag, wenn sie mit ein, die kleiner Tränen enthalten können / Reiben veröffentlicht.
Ihren Artikel jetzt
eintauschen und
EUR 0,10 Gutschein erhalten.
Möchten Sie verkaufen?
Zur Rückseite klappen Zur Vorderseite klappen
Anhören Wird wiedergegeben... Angehalten   Sie hören eine Probe der Audible-Audioausgabe.
Weitere Informationen
Dieses Bild anzeigen

How to Comply with Sarbanes-Oxley Section 404: Assessing the Effectiveness of Internal Control (Englisch) Gebundene Ausgabe – 23. März 2004

Alle Formate und Ausgaben anzeigen Andere Formate und Ausgaben ausblenden
Amazon-Preis Neu ab Gebraucht ab
Gebundene Ausgabe, 23. März 2004
"Bitte wiederholen"
EUR 25,64 EUR 1,12
3 neu ab EUR 25,64 13 gebraucht ab EUR 1,12

Dieses Buch gibt es in einer neuen Auflage:

Jeder kann Kindle Bücher lesen — selbst ohne ein Kindle-Gerät — mit der KOSTENFREIEN Kindle App für Smartphones, Tablets und Computer.




Designed specifically for Sarbanes-Oxley Section 404 compliance, How to Comply with Sarbanes-Oxley Section 404 features: A step-by-step approach to engagement performance Original material from a leading expert in auditing and accounting Practice aids, including forms, checklists, illustrations, diagrams, and tables In-depth explanations to help professionals understand how best to approach the internal control engagement Examples and action plans providing blueprints for implementing requirements of the Act Order your copy today!


Effective in 2004, as a result of Section 404 of the Sarbanes-Oxley Act of 2002, all public companies will be required for the first time to submit an annual assessment of the effectiveness of their internal control to the SEC. Additionally, each corporation’s independent auditors are required to audit and report on management’s internal control reports, just as they audit the company’s financial statements. How to Comply with Sarbanes-Oxley Section 404 provides a comprehensive, practical, and structured approach for the testing and evaluation of internal control required by Sarbanes-Oxley Section 404.

Drawing on original material by an expert in auditing and accounting, How to Comply with Sarbanes-Oxley Section 404 features a step-by-step process for evaluating a company’s internal control and proving these systems are effectively in place. This hands-on resource is packed with such practice aids as forms, checklists, illustrations, diagrams, and tables to assist anyone who participates in the planning or performance of an evaluation–including CFOs, internal auditors, and outside consultants.

Clearly and logically organized to make the material as accessible as possible, How to Comply with Sarbanes-Oxley Section 404 covers:

  • Management’s required assessment of the entity’s internal control
  • Considerations for outside consultants
  • Controls over information technology systems
  • Coordinating with independent auditors
  • Documenting your planning decisions
  • Hard-to-test entity-level control objectives
  • What auditors expect from management’s evaluation process
  • Documentation: what it is…and is not
  • Assessing the adequacy of existing documentation
  • Internal control reliability model
  • Evaluating the design and implementation of Sarbanes-Oxley automated compliance tools
  • An action plan for testing and evaluating entity-level controls
  • Operating effectiveness: test design considerations
  • Annual and quarterly reporting requirements
  • Expanded reporting on management’s responsibilities for internal control
  • Example disclosures of a material weakness
  • Example reports on management’s responsibilities for reporting and internal control


Es gibt noch keine Kundenrezensionen auf
5 Sterne
4 Sterne
3 Sterne
2 Sterne
1 Sterne

Die hilfreichsten Kundenrezensionen auf (beta) 5 Rezensionen
28 von 29 Kunden fanden die folgende Rezension hilfreich
Exceptional resource 3. Juli 2004
Von Mike Tarrani - Veröffentlicht auf
This book does not much dwell on the details of Sarbanes-Oxley - the reader is assumed to have an understanding of the salient details - but, instead lays out a comprehensive action plan for complying with Section 404.
The author begins with three chapters covering the overall goals and objectives, roles and responsibilities, assessment issues, and an excellent chapter about internal control criteria. Each of these chapters ends in appendices that support the compliance initiative.
Milestones, covered in Chapters 3 through 7, are clearly defined with respect to what it will take, key issues, and appendices that provide examples, guidelines, checklists and other material that support compliance. I was impressed by the straightforward approach, the complete and clear identification of all issues - and especially so regarding IT, developing documentation, and testing the controls - and the fact that the control objectives were carefully mapped to the COSO Framework.
If you want a realistic view of the scope and complexity of Section 404 compliance this book will provide it. If you are an IT professional I strongly recommend visiting Information Systems Audit and Control Association (ASIN B00006BW74), which makes available a free 84-page document titled "IT Control Objectives for Sarbanes-Oxley". For more general information, there is a commercial site that provides news and updates on Sarbanes-Oxley issues (ASIN B0000AM23N), as well as the Public Company Accounting Oversight Board (ASIN B00013Y80Y), which provides rule making information and a means to comment on proposed rules. You can reach these sites by pasting the ASIN numbers in the search box at the top of this page, selecting all products and clicking GO.
19 von 20 Kunden fanden die folgende Rezension hilfreich
Relevance of Ramos' book for IT SOX professionals 7. Oktober 2004
Von E. J. Hillard - Veröffentlicht auf
Verifizierter Kauf
The fact that section 404 doesn't go beyond a high level statement about "internal controls" means that IT SOX audits are making it up as they go. There is a desparate need for more detailed, authoritative guidance in this area. Unfortunately, though Ramos' book makes a contribution to the general audit literature around Sarbanes-Oxley, it does not advance things for the IT professional. If you are this kind of person, I recommend not buying this book and instead continuing to rely on the resources available on the web, mostly downloadable for free, such as the IT Governance Institute's "IT Control Objectives for Sarbanes-Oxley".
16 von 18 Kunden fanden die folgende Rezension hilfreich
A SOX Roadmap for the People Who Really Need It 17. September 2004
Von Christopher Byrne - Veröffentlicht auf
Let's face it. Most people think that auditors are lifeless, unemotional drones who move with a single minded efficiency in reviewing financial records, controls and other sundry items to ensure that the financial statements of a company are free of material misstatements and that they are accurate. In fact, Andersen auditors were often referred to as "Andersen Androids". But for most people in a corporation, that was fine because they had no real need to worry about or understand accounting and business control concepts. Put an auditing textbook in front of them and you could watch their eyes glaze over.

Section 404 of the Sarbanes-Oxley (SOX) Act changes all of that, especially for line of business managers and information technology professionals. Every day I talk to people who are faced with trying to understand SOX and implementing systems to support SOX requirements. There is often frustration in their voices or emails as they lack an effective roadmap. In How to Comply with Sarbanes-Oxley Section 404: Assessing the Effectiveness of Internal Controls (290 pages, John Wiley and Sons, Inc, 2004. 290 Pages), Michael Ramos sets out to provide an understanding of how Section 404 of SOX came to be, what it requires, what is not required, and a roadmap for assuring compliance.

It is not an easy task to present a comprehensive guide to aid with Section 404 compliance, but Ramos delivers in this book in ways that many others have tried and failed. Ramos is a CPA and an auditor by training and background. He starts from the explaining the responsibilities of an information systems auditor and very basic concepts of business controls, which allows every reader of the book to start with a common framework. His writing leads a reader to integrate, weave and understand what controls are and how they fit into the compliance process. He writes it in a way that does not talk down to the reader, but engages them in a thoughtful conversation as a good teacher would in a classroom.

The book is intended to be a guidebook and a reference and its utility for this purpose will not disappoint. After laying the groundwork, Ramos leads the reader through every step of the audit processes associated with Section 404 compliance. He helps the reader understand what the auditor will be looking for and reviewing. He examines the role of automated compliance tools, including the pros and cons of their use. He helps the reader to understand the different types of controls, the different kinds of risk and what "materiality"means when reporting deficiencies. In fact, if there is one lesson to take from this book for non-auditors, materiality is not based on what YOU think is a deficiency that will impact your view and acceptability of a system, but the view of the users of a system and/or any information generated by the system.

Who should read this book? It should be read by ALL C-level officers of an organization so they understand the concepts and the processes. It should be read by all members of an organization's audit committee so they too have an understanding. It should also be read by information systems managers so they understand that they are not operating in a silo that is independent of the rest of an organization, but that they are a fully integrated part of an ecosystem designed to support business objectives and sound corporate governance. They also need to be able to communicate with their staff about the importance of sound controls. And last but not least, it should be read by and incorporated into the toolkit of every IS Auditor.

This is not a cheap book (US$65.00), but as the best, most comprehensive guide to Section 404 compliance out there, it is worth every penny. The implementation and evolution of tools and processes associated with Section 404 of the Sarbanes-Oxley Act will bring about technical business and cultural changes in the way business is managed so that sound corporate governance is in place. This book will more than help you manage the change effectively.

The Business Controls Caddy Scorecard: Double Eagle on a long Par 5.

Christopher Byrne

"The Business Controls Caddy"

4 von 4 Kunden fanden die folgende Rezension hilfreich
A technical take on SOX's internal ramifications 5. April 2006
Von Rolf Dobelli - Veröffentlicht auf
Author Michael Ramos provides comprehensive, meticulously detailed information. He offers a detailed guide to evaluating your company's internal controls. He addresses Sarbanes-Oxley Section 404 legislation, as well as associated Security and Exchange Commission (SEC) and Public Company Accounting Oversight Board (PCAOB) regulatory requirements, even covering the COSO and COBIT reporting frameworks. While expert and exhaustive, the book suffers from a dense, academic writing style. We suggest it to those who seek a very detailed compliance overview and who already have experience with understanding auditing standards and related governmental regulations.
10 von 15 Kunden fanden die folgende Rezension hilfreich
Don't waste your time and money on this book 24. November 2004
Von Audit - Veröffentlicht auf
Author doesn't have anything in this book which not already available free of cost on the internet. It was a total waste of my time and money procuring and reading this book. May be useful to people who can't search items on their own online. Admire the market who knew how to title useless books like these!!
Waren diese Rezensionen hilfreich? Wir wollen von Ihnen hören.