Regulatory Compliance & Auditing Services
Over the years we have nurtured in-house capabilitiesto resolve complex compliance requirementsand have managed to stay on top of the current regulations
The Global Regulatory Compliance Management group of Fortira Inc. addresses the full spectrum of SOX 302/404 Compliance including Business and IT process evaluations, ERP GRC Access Compliance, SAS 70 assessments, control gap assessments, risk evaluation and remediation, reporting and disclosures, and related internal audit functions.
Our group is comprised of dedicated and experienced SOX/Audit professionals who service the global compliance needs of Fortune 500 organizations. We combine professional experience, and industry best practices, to provide customer value-driven solutions and provide valuable expertise in implementation of time critical projects.
Over the years we have nurtured in-house capabilities to resolve complex compliance requirements and have managed to stay on top of the current regulations.
- Sarbanes Oxley (SOX) Compliance
- ERP GRC Access Compliance
- SAS 70 Services
Sarbanes Oxley (SOX) Compliance
Congress enacted ï¿½Sarbanes Oxley Act of 2002ï¿½ at the turn of the century with the massive corporate governance/financial scandals at Enron, Worldcom, and others ï¿½To protect investors by improving the accuracy and reliability of corporate disclosures made pursuant to the securities laws, and for other purposesï¿½.
Todayï¿½s business environment is ever changing and the challenges corporates face in the wake of new regulations and increased scrutiny from SEC and other corporate regulatory authorities calls for a more comprehensive approach to corporate governance and risk management. Global markets and companies trying to reach across the world are constrained for time, money, resources, and senior management are under constant pressure to deliver increased accuracy and reliability of corporate disclosures.
What we do
We provide cost effective, practical and easy-to-implement solutions that help comporations comply with SOX 302 and 404 disclosure requirements. Our dedicated teams of professionals are well-versed with industry best practices specializing in controls development life cycle (CDLC) management. Our goal is to assist clients in achieving cost-effective corporate governance excellence in the least amount of time while providing necessary tools and training resources for continued sustainability and on-going monitoring of controls. Our risk assessment approach works from the top-down by analyzing 302 and 404 risks and controls while identifying areas of high impact to financial statements and disclosures.
We believe in strategic alliance with clients and never engage in one-sided solutions. We value your teamï¿½s involvement and expertise, and work with your resources, processes, and tools to develop solutions that are apt to your business needs and easy to adapt and own.
ERP GRC Access Compliance
User access management is a long standing issue for any large organizations that relies heavily on IT. Organizations are facing increased challenges in the areas of information security, security and controls in SAP, Oracle Applications, J.D.Edwards, Peoplesoft, and various other mid-size ERPï¿½s. More and more, regulatory bodies are now demanding confirmation that processes granting access are controlled and documented.
What we do
We work with your control owners and administer the implementation of GRC Access tools to help organizations maximize the benefits from implementation. Our professionals have worked with industry best tools such as Compliance Calibrator, Approva, and others to help clients avoid common pitfalls and to gain traction by successfully utilizing the tools. We work extensively with compliance managers, control owners, internal auditors, corporate finance controllers, and external auditors to resolve SOD violations at ERP master role level or even at the user level.
Our in-depth understanding of workings of ERP system and US regulations: SOX,GAAP,FDA,ISO,HIPAA enable us to provide cutting-edge solutions that meet global regulatory requirement standards.
SAS 70 Services
Outsourcing has undergone an evolution over the last 10 years. As business environments changed, in competitive markets organizations have placed more and more reliance on outsourced services for various cost-benefit reasons. As a result, outsourcing services have mushroomed and with it grew new challenges with regard to corporate regulatory governance. Recent rule changes have required service providers to demonstrate their commitment to sound business controls.
What we do
Within our global compliance spectrum, we offer SAS 70 services to organizations. In response to this constant rise in regulatory requirements, our professionals have developed the know-how to successfully carry out a consolidated SAS 70 audit within defined timelines and deliverables. We exercise extreme care in understanding the clientï¿½s business and perform due-diligence prior to the audit commencement. We maintain a constant stream of communication throughout the audit, while delivering post-audit findings and reports.
We work under the realm of COSO and COBIT framework and SEC, PCAOB, AICPA guidelines to provide an independent assessment of a clients control environment. Over the years, we have been able to integrate our approach and built-on lessons learnt to enhance the quality of work we do.