No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe
Jump to a Section
  • At the Office
    • Ethics
    • HR Compliance
    • Leadership & Career
    • Well-Being at Work
  • Compliance & Risk
    • Compliance
    • FCPA
    • Fraud
    • Risk
  • Finserv & Audit
    • Financial Services
    • Internal Audit
  • Governance
    • ESG
    • Getting Governance Right
  • Infosec
    • Cybersecurity
    • Data Privacy
  • Opinion
    • Adam Balfour
    • Jim DeLoach
    • Mary Shirley
    • Yan Tougas
No Result
View All Result
Corporate Compliance Insights
Home Risk

Tips for Those Who Missed the December COSO Deadline

by Timothy O'Hara
February 3, 2015
in Risk
Tips for Those Who Missed the December COSO Deadline

The Wall Street Journal reported in November that smaller companies were slow to adopt new rules for internal controls put in place by the Committee of Sponsoring Organizations of the Treadway Commission (COSO) – the 2013 Internal Control Integrated Framework.

The framework was designed to help organizations implement internal controls in response to changes in business and operating environments since the issuance of the original framework in 1992. The framework also broadens requirements for the application of internal controls, clarifying what constitutes an effective internal control, defined by COSO as “a process, effected by an entity’s Board of Directors, management and other personnel, designed to provide reasonable assurance regarding the achievement of objectives relating to operations, reporting and compliance.”

Now, for companies large and small, time is up: the deadline to map to the new rules was December 15.

While, technically, the rules are not requirements, they do constitute a “suitable framework” to comply with Sarbanes Oxley (SOX) provisions for internal control and financial reporting, providing meaningful standards for auditing with little room for deviation. As a result of the “suitable framework” language, adopting the COSO framework allows publicly traded companies in the United States to effectively kill two birds with one stone, integrating the best practices provided by the COSO framework while also complying with the regulatory requirements of SOX.

If you’re an executive at a publicly run company and you’ve just now discovered this lapse, you might be feeling overwhelmed as you run through the scenarios and begin planning how you’ll get your business up to par. You may want to consider engaging a partner – someone who has implemented this framework before.

For those seeking guidance, here are six tips to consider – before the Securities and Exchange Commission (SEC) comes knocking at your door:

  1. Get up to speed. Assess the situation and obtain the information you’ll need to ensure everyone on your team knows what they need to know. If necessary, find a third-party partner who can help.
  2. Design an implementation plan. Identify who, what, when, where, how and why for all of the integral steps you’ll need to comply with the new rules.
  3. Assess to determine control gaps. COSO’s guidance includes 17 principles across five components of internal controls: control environment, risk assessment, control activities, information and communication and monitoring. You’ll want to align your control activities with the COSO principles and remediate any design controls that fall short.
  4. Validate all data sources.
  5. Follow through – and integrate across your enterprise. Complete your plan, identifying the resources you’ll need, the tests you’ll want to conduct and a realistic and concrete timeline to implement.
  6. Test your controls for operating effectiveness. Do your controls monitor what you intend them to?
  7. Communicate your results. Ensure leadership and all other parties are aware of the process and the need for improved data integrity overall.

Missing the COSO deadline was a mistake, sure, but you still have time before the SEC starts looking at companies still operating under the 1992 guidelines. Follow these steps and you’ll quickly move toward compliance.


Tags: COSO
Previous Post

Compliance Training Goes Global

Next Post

Franchising and Liability Under the FCPA

Timothy O'Hara

Timothy O'Hara

backgroundTimothy O’Hara is an account executive, CPA and ICCS with Infogix, Inc., a pioneer in data integrity and analytics solutions that unites predictive analytics with comprehensive data controls and protection. As an advocate for his clients, Tim helps them maximize their return on investment through data integrity and data analytics solutions. These solutions improve the efficiency and effectiveness of their processes, information content and systems. His clients include Fortune 500 and mid-sized companies in various industries including telecommunications, media, government, financial services, manufacturing, retail, business services and consumer goods. The foundation of his experience is his CPA and ICCS Risk Certification where he mastered transaction processing (Order-To-Cash, Purchase-to-Pay, etc.), financial reporting, business information exchanges (B2B, B2C, B2G, G2G) and fraud. Tim used these skills, knowledge and his passion for helping people to enable his clients to transform their operations over time. Tim is continuing his learning in business analytics, social media, and forensic accounting. Tim received his B.S in Accounting from the University of Scranton. Tim has lectured and published articles on Big Data, Data Warehouse Testing and Monitoring, and Information Risk Audit and Control.  

Related Posts

man on tablet with cloud

COSO Releases New Guidance: Enterprise Risk Management for Cloud Computing

by Corporate Compliance Insights
July 28, 2021

Lake Mary, FL (July 28, 2021) – With increased need for more remote and flexible work environments as a result...

businessman jumping between increasingly taller stacks of coins

The Board-Management Risk Appetite Dialogue

by Jim DeLoach
December 17, 2019

Considering unpredictable markets, myriad uncertainties and unprecedented market opportunities, how should the board and executives engage with respect to the...

illustration of scattered financial reports on green background

Financial Reporting Control Considerations

by Ron Kral
September 18, 2019

Ron Kral espouses the benefits of a well-designed system for financial reporting controls and provides five ways organizations can improve...

illuminated light bulb with brain inside, in businessman's hands

A Cognitive Risk Framework for the 4th Industrial Revolution

by James Bone
June 10, 2019

As we move into the 4th Industrial Revolution (4IR), risk management is poised to undergo a significant shift. James Bone...

Next Post
Franchising and Liability Under the FCPA

Franchising and Liability Under the FCPA

No Result
View All Result

Privacy Policy | AI Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Research
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2025 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
No Result
View All Result
  • Home
  • About
    • About CCI
    • CCI Magazine
    • Writing for CCI
    • Career Connection
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Library
    • Download Whitepapers & Reports
    • Download eBooks
    • New: Living Your Best Compliance Life by Mary Shirley
    • New: Ethics and Compliance for Humans by Adam Balfour
    • 2021: Raise Your Game, Not Your Voice by Lentini-Walker & Tschida
    • CCI Press & Compliance Bookshelf
  • Podcasts
    • Great Women in Compliance
    • Unless: The Podcast (Hemma Lomax)
  • Research
  • Webinars
  • Events
  • Subscribe

© 2025 Corporate Compliance Insights