With the enactment of the Sarbanes-Oxley Act of 2002, all public companies are now required by the SEC to disclose whether or not the company has:
Added by Kelsey R.
Step 1
Step 1: Read the question and identify the disclosure area created by the Sarbanes-Oxley Act of 2002 that the SEC required public companies to report. Show more…
Show all steps
Your feedback will help us improve your experience
Sri K and 99 other Principles of Accounting educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Recommended Videos
Government is cleaning up the way companies do business after accounting and governance scandals rocked investor confidence and damaged the reputation of companies large and small. The Sarbanes-Oxley Act (SOX) of 2002 was enacted in response to the high-profile Enron and WorldCom financial scandals to protect shareholders and the public from accounting errors and fraudulent practices by organizations. One primary component of the SOX is the definition of which records are to be stored and for how long. For this reason, the legislation not only affects financial departments but also IT departments whose job it is to store electronic records. SOX states that all business records, including electronic records and electronic messages, "must be saved for not less than five years." The consequences for noncompliance are fines, imprisonment, or both. Three rules of Sarbanes-Oxley affecting the management of electronic records address the following areas: A. The destruction, alteration, or falsification of records. It states that persons who knowingly alter, destroy, mutilate, conceal, or falsify documents shall be fined or imprisoned for not more than 20 years, or both. B. The retention period for records storage. Best practices indicate that corporations securely store all business records using the same guidelines set for public accountants. Organizations shall maintain all audit or review work papers for a period of five years from the end of the fiscal period in which the audit or review was concluded. C. The business records and communications that need to be stored, including electronic communications. IT departments are facing the challenge of creating and maintaining a corporate records archive in a cost-effective fashion that satisfies the requirements put forth by the legislation. Essentially, any public organization that uses IT as part of its financial business processes must implement IT controls to comply with SOX. BENEFITS FROM SARBANES-OXLEY Many businesses are promoting the benefits they received from implementing SOX. General Electric Co., which spent about $30 million on SOX compliance, has added controls that boost investors' confidence in the company. United Technologies used SOX to standardize bookkeeping audits in its disparate businesses around the world. The biggest advantage of all, though, may be the greater confidence investors have in financial results. Some officials believe it will take another two years (around 2008) for companies, auditors, and regulators to apply the law efficiently. That might appear to be a long time, and it may seem to be expensive; however, it is a small price to pay to help organizations run smoothly and renew investor confidence. IMPLEMENTING SARBANES-OXLEY Ultimately, Sarbanes-Oxley compliance will require a great deal of work among all departments. Compliance starts with running IT as a business and strengthening IT internal controls. The following are a few practices organizations can follow to ensure compliance with the Sarbanes-Oxley Act. Overhaul or upgrade financial systems to meet regulatory requirements for more accurate, detailed, and timely filings. Examine the control processes within the IT department and apply best practices to comply with the act's goals. For example, segregation of duties within the systems development staff is a widely recognized best practice that helps prevent errors and outright fraud. The people who code program changes should be different from the people who test them, and a separate team should be responsible for changes in production environments. Ensure that information system customization is not overriding controls by working with internal and external auditors. Homegrown financial systems are fraught with potential information-integrity issues. Although leading enterprise resource planning (ERP) systems offer audit-trail functionality, customization of these systems often bypasses those controls. Work with the CIO, CEO, CFO, and corporate attorneys to create a document-retention-and-destruction policy that addresses what types of electronic documents should be saved and for how long.
Sri K.
Which of the following is not a provision of the Sarbanes-Oxley Act of 2002? a) Companies are required to report on the effectiveness of their internal controls. b) The chief executive officer and the chief financial officer are jointly responsible for the establishment and enforcement of internal controls. c) The company's external auditor is charged with the ultimate responsibility for the accuracy of the company's financial statements and accompanying footnotes. d) The company's external auditors are required to attest to the accuracy of the internal controls report.
Rashmi S.
Jane Tucker is the ethics officer for a publicly traded company. She is concerned that the company does not have a mechanism for anonymous reports of issues by employees. The CEO is not inclined to spend the money required to set up a hotline or any other reporting mechanism. Which of the following statements is true about this situation? A) As long as the company has an ethics officer to whom employees can report concerns, it has done everything necessary to enjoy the protections under the Federal Sentencing Guidelines. B) With Jane as an ethics officer and adding in a code of ethics, the company has met the two required prongs for the Federal Sentencing Guidelines. C) Without an anonymous reporting system, the company does not meet the minimum requirements for the protections of the Federal Sentencing Guidelines. D) The Federal Sentencing Guidelines protections do not apply to publicly traded companies under Dodd-Frank.
Azat N.
Recommended Textbooks
Horngren’s Cost Accounting
Cost Accounting A Managerial Emphasis
Principles of Accounting Volume 1: Financial Accounting
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD