IT General Controls

Confirm your company meets compliance standards
Cybersecurity Penetration Testing - CPCyber, Cybersecurity Consulting Denver, CO

IT General Controls Overview

SOX 404 ITGC Testing

Cornerstone provides testing and remediation services as an outsourced internal auditor. As an outsourced internal audit team, we are comfortable using the client’s control framework (COBIT, NIST). However, we can also provide a control structure based on over 30 years of experience with external auditors.

Our IT SOX 404 Controls Testing follows a simple process:

  • Scoping of Systems and Controls
  • Evidence Collection
  • Testing
  • Reporting

We pride ourselves in aligning with the other audit teams for collaboration while maintaining independence to reduce the strain on the business contacts.

Simple Testing Process at CPCyber, Cybersecurity Consulting Denver, CO

Fast, responsive, and extremely good quality of work. It was really a pleasure working with Bill and his team.

Jonathan Maske

Frequently Asked Questions

Why Should You Consider SOX 404 ITGC Testing?

Sarbanes-Oxley Section 404 IT General Controls (SOX 404 ITGC) testing is required for publicly traded companies. These IT controls ensure the data in the financial systems and therefore the financial statements are complete and accurate.

Does my business needs a SOX 404 ITGC Testing?

If your business is publicly traded, then yes, you would need to have IT controls in place and operating effectively to be in compliance with Section 404 of the Sarbanes-Oxley Act. Testing must be done by an external auditor to verify the controls are operating effectively during the testing period.

Don't risk your business and your clients' private information any longer.

Our team knows the ins and outs of CyberSecurity, and more. We stay ahead of the curve and provide our clients’ peace-of-mind. We’d love to hear from you!