top of page
SOX Compliance for Cybersecurity Assessments

SOX Compliance for Cybersecurity Assessments

Enhance your understanding of SOX compliance and cybersecurity with the Sarbanes-Oxley Act Compliance for Cybersecurity Assessments CPE Training Event. This four-hour course is specifically designed to bridge the gap between cybersecurity risks and SOX internal controls, helping professionals implement robust solutions to meet regulatory expectations. Earn 4 Continuing Professional Education (CPE) credits while gaining actionable insights into safeguarding financial integrity through cybersecurity measures.
 
Why Attend?
 
Master SOX Requirements for Cybersecurity
Understand how SEC guidance connects cybersecurity risks and financial disclosures under SOX, empowering you to meet compliance expectations.
 
Enhance Organizational Cybersecurity
Learn to establish and operate strong internal controls designed to mitigate cybersecurity threats and protect sensitive data.
 
Ensure Financial and Operational Integrity
Stay ahead in understanding disclosure obligations, risk assessments, and the critical role of insider trading prohibitions in strengthening compliance frameworks.
 
Earn 4 NASBA-Approved CPE Credits
Elevate your expertise in auditing and information security while gaining industry-recognized credentials to boost your career.
 
What You’ll Learn
 
This program covers a range of essential topics needed to lead SOX compliance in cybersecurity assessments effectively:
1. Foundations of SOX Cybersecurity Compliance
  • Understand the SEC’s guidance on cybersecurity disclosures.
  • Explore the connection between cybersecurity risks and SOX-relevant internal controls.
2. Policies and Procedures for Cybersecurity Risks
  • Learn to develop comprehensive policies for mitigating cybersecurity risks.
  • Ensure alignment between cybersecurity frameworks and regulatory requirements.
3. Building Effective Cybersecurity Internal Controls
  • Design controls that monitor and manage data risks.
  • Gain insights into implementing logical and physical security measures.
4. Conducting Cybersecurity Risk Assessments
  • Learn how to assess IT risks with tools such as heat maps and structured frameworks.
  • Understand the COSO 2013 framework for Internal Controls Over Financial Reporting (ICFR).
5. Key Mitigation Strategies
  • Explore solutions for addressing vulnerabilities identified in risk assessments.
  • Discover best practices for ongoing monitoring and managing compliance obligations.
6. Insider Trading and Disclosure Guidance
  • Review the insider trading prohibitions tied to cybersecurity incidents.
  • Identify responsibilities for disclosing material nonpublic information about cybersecurity risks.
 
Event Details
 
This comprehensive training program combines practical knowledge with advanced strategies to support compliance efforts effectively:
  • Format: Group internet-based training.
  • Schedule: Offered every eight weeks on Mondays, 10:00 a.m.–2:30 p.m. (Central Time).
  • Cost: $280 per participant.
  • Group Options: Custom scheduling available for teams of two or more participants.
 
Who Should Attend?
 
Perfect for professionals tasked with cybersecurity, internal controls, and regulatory compliance:
  • Internal Audit Managers: Build robust frameworks to align cybersecurity risks with financial disclosures.
  • Compliance Officers: Gain tools to oversee and manage cybersecurity-related compliance obligations.
  • IT Security Professionals: Strengthen technical controls and understand the audit process behind SOX compliance.
 
Why Cybersecurity Compliance Matters Under SOX
 
While the Sarbanes-Oxley Act does not explicitly address cybersecurity, its focus on internal controls and financial reporting ties closely to mitigating cybersecurity risks. With digital threats constantly evolving, ensuring SOX compliance requires a proactive approach to assessing and addressing risks that could impact financial integrity.
 
The Sarbanes-Oxley Act Compliance for Cybersecurity Assessments CPE Training Event equips you with the knowledge to meet these challenges, from conducting IT assessments to implementing internal controls aligned with best practices like the COSO framework. Investing in these skills will not only advance your career but also safeguard your organization’s reputation and operational stability.
 
Register Today
 
Take the next step in mastering SOX cybersecurity compliance with the Sarbanes-Oxley Act Compliance for Cybersecurity Assessments CPE Training Event. Earn 4 NASBA-Approved CPE credits while elevating your organization’s resilience against cybersecurity threats.
 
Sign up now to lead with confidence in securing financial and operational success!

  • Details on Event Presentation

    Offered every eight weeks on Mondays at 10:00 a.m. to 2:30 p.m. Central Time in four CPE-Credit event.

     

    We can schedule private events on your timetable for two or more attendees.

  • CPE Event Highlights

    This CPE event reviews and answers the following questions:

    • SEC Cybersecurity Disclosure

    • Frameworks to guide cybersecurity risk mitigation

    • Cybersecurity risk assessment

    • Testing cybersecurity controls

  • Learning Objectives

    • Defining “SOX for Cybersecurity” compliance
    • Learning the reasons behind the need for stronger cybersecurity controls
    • Understanding the structure of IT departments and their support services
    • Conducting an IT Risk Assessment
    • Understanding the categories of IT general controls and IT application controls
    • Identifying the specific additional controls and tests to mitigate SOX Cybersecurity risks

  • Key Issues on the Agenda

    Section 1 - Introduction and Definitions

    • What is SOX for Cybersecuirty Compliance?

    • SEC Cybersecurity Disclosure

    Section 2 - Overview of Computer Systems and IT Audits

    • Information Technology Systems

    • Information Technology Audits

    • Benefits of Internal Contols

    Section 3 - Internal Control Frameworks Impacting SOX Cyber

    • What is a "System of Internal Contol"?

    • COSO 2013 Internal Control Framework

    • IT Control "Frameworks"

    Section 4 - IT Controls for SOX Compliance

    • SOX Compliance Audits

    • General Controls

    • Activity Controls

    Section 5 - SOX for Cybersecurity (SOXCS) Implementation Guidance

    • SOX for Cybersecurity Implementation

    • Understanding the IT Organizaiton

    • Segregation of Duties

    • IT Infrastruture Components

    Section 6 - Assessing Information Technology Risks

    • Cybersecurity Risk Assessment

    • "Heat-Map"  the Risks

    • People Create Cybersecurity Risk

    Section 7 - Physical Security Controls for SOXCS

    • Physical security

    • What's New in Physical Security?

    • Physical Security Tests

    Section 8 - Logical Security Controls

    • Testing Logical Security Controls

    • "ACDs" Adds, Changes and Deletes to Access

    • Role-Based Security

    • User Entitilement

    • Segregation of Duties Conflicts

    • Network Vulnerabilites

    • Firewall Configuration

    • Privileged Accounts

    • Service Accounts

    • Network Segmentation

    • Patch Management

    • Anti-Virus Protection

    • Encryption

    • Data Loss Prevention Controls

    Section 9 - Systems Development and Change Controls

    • SDLC Policy and Controls

    • Financial Application Change Controls

    • Interface Controls

    Section 10 - Backup and Restoration Controls

    • Backup Schedules and Logs
    • Restoration Testing

    Section 11 - Summary

  • NASBA Program Disclosure

    Program Level of Understanding: Intermediate
    Prerequisites: Basic understanding of auditing and IT security
    Advance Preparation: None
    Delivery Format:

    On-site Training (Group-Live); Seminar (Group-Live)
    NASBA Field(s) of Study:

    "Auditing" and "Information Technology"
    CPE Credits: 4, based on 50 minutes of instruction per hour

  • Summary of the Subject Matter

    The "Sarbanes-Oxley Act Compliance for Cybersecurity Assessments" CPE training event is a comprehensive program designed to help attendees understand the SOX compliance requirements for cybersecurity assessments.

     

    This training covers the key provisions of the Sarbanes-Oxley Act (SOX) and how they apply to an organization's information security practices, including assessments of internal control systems, risk management, and data protection. Participants will gain a deep understanding of the COSO 2013 framework for Internal Controls Over Financial Reporting (ICFR) and how it can be used to ensure SOX compliance. The event will provide a thorough overview of the ICFR framework and its components, as well as best practices for implementing and maintaining ICFR controls.

     

    The ICFR SOX Compliance training will be delivered by expert instructors and feature interactive sessions and real-world case studies, providing attendees with practical knowledge and skills that can be immediately applied to their own organizations.

     

    The program is designed for professionals looking to build their knowledge and skills in SOX compliance, ICFR training, and cybersecurity assessments. By attending this CPE training event, participants will gain a comprehensive understanding of the requirements and best practices for SOX compliance in the area of cybersecurity assessments.

$280.00Price
Quantity

Subscribe Form

Thanks for submitting!

479-200-4373

  • Facebook
  • Twitter
  • LinkedIn
  • Twitter
  • LinkedIn
  • Facebook

©2021 by The Accountware Group. Proudly created with Wix.com

bottom of page