Attestation Program Management

Phase 1: Enterprise Wide Risk Assessment

• Evaluate and understand environmental controls
• Assess the complexity of the IT infrastructure
• Assist management in performing process/financial risk assessment and mapping to the critical assertions
• Work with management to establish and approve project plan

Phase 2: Process and Control Documentation

• Document all processes identified as high and medium risk
• Identify key controls at the transactional, application, and process levels
• Provide recommendations on weaknesses discovered in overall design effectiveness
• Provide a test plan for key controls using external audit approved testing guidelines

Phase 3: Key Control Testing

• Perform testing of key controls
• Identify all controls that have deficiencies in operating effectiveness

Phase 4: Ongoing Compliance

• Assist management with attestation
• Update documentation as needed
• Perform quarterly retesting where required
• Assist management with self-assessment program
• Assist management with internal training program
• Assist management in lowering cost and increasing efficiency
• Gap analysis and remediation strategies

Our Commitment

• Continuous updates to management throughout the process
• Objectively evaluate the findings with management and reposition mitigating controls to the External Auditor
• No surprise fees: we cap employee travel expenses and the administrative overhead to the client
• We assist management's understanding of the process in order to better enable ongoing commitment and compliance after successful project completion

Our Advantage

• Project teams include consultants with external audit experience
• Engagement teams are trained on identifying business process improvements without requiring additional time and commitment
• Our multi-tier staffing model provides the best value for the resource levels used

WORLDS APART FROM THE COMPETITION

Attestation Program Management

Compliance Methodology

Setting The Bar For Others to Follow...