Tag: ICFR

Trends in SOX 404 reporting on ICFR

You probably recall that, under SOX 404(b), all public reporting companies, other than non-accelerated filers and EGCs, are required to obtain an auditor attestation regarding the effectiveness of their internal control over financial reporting. SOX 404(a) requires all public reporting companies, including non-accelerated filers, to provide an assessment of ICFR by management. An analysis by Audit Analytics of SOX 404 reporting on ICFR over 14 years showed that the number of adverse auditor attestations—auditor attestations indicating ineffective ICFR— followed different trend lines than management-only assessments.

The perils of failing to take internal controls seriously

by Cydney Posner Here’s a warning shot across the bow from the SEC to take internal controls –- and representations regarding the same — very seriously. You’ll recall that SOX 404 and related rules instituted a new regime regarding reporting and evaluation of internal control over financial reporting (ICFR), including […]