In response to a number of bankruptcies and financial scandals, including the infamous Enron case - in 2002 the Sarbanes-Oxley Act (commonly called sox) was signed into law.  The new legislation was to assure credibility of financial data presented by American public companies. One of the key provisions of the Act is related to establishing proper control environment in an organisation and implementing a mechanism of its systematic audit. Since almost every organisation nowadays operates based on IT systems, implementing the SOX requirements also means defining proper IT control mechanisms.  Even though SOX belongs to American legislation, the requirements set down in it also affect non-US international corporations and capital groups if the stocks of such organisations are listed on the New York Stock Exchange.  As a result, the provisions of SOX have to be implemented in many Polish companies.

Services offered by our company include, among others, assistance in adjusting the company to comply with Sarbanes-Oxley Act requirements or performing cyclical control tests. We commence the adjustment process with identifying all the critical processes using a reliable risk analysis model or a risk analysis model recommended by the client. Then, PBSG specialists define the control procedures and suggest required modifications, if applicable. Based on risk analysis control points will be determined and tests will be designed. Having performed the tests and assessed the results consultants suggest applying possible modifications. The documentation is compiled in Polish and/or in English.  

Offered services:

1. Preparing control procedures

• Compiling Procedure Risk Map
• Identifying critical procedures  
• Recording and verifying procedures  
• Determining control points  
• Designing tests  

2. Monitoring and internal auditing

• Performing tests
• Analysing test results and drawing up recommendations
• Systematic monitoring and updating of control system in co-sourcing with the PBSG auditor team