NYC Skyline BW

Using COSO for Compliance & SOX

Being offered seven times in 2022 in three six hour sessions for 18 CPE credits. (Dates listed below for 2022)

The sessions will run from 9:00 a.m. to 3:00 p.m. Central Time.

"There's no time like the present to simplify your SOX compliance and internal controls program."

Join us for a unique, interactive COSO training workshop that "walks you through" COSO 2013: Internal Control Integrated Framework from the Committee of Sponsoring Organizations of the Treadway Commission (COSO).

This COSO training course is for business professionals who work for public corporations that are required to comply with the Sarbanes-Oxley Act (SOX), as well as non-public organizations. Our comprehensive training is for anyone in audit, compliance, accounting, information technology,

who wants to obtain a solid understanding of the COSO internal controls that help organizations reduce risk.


We present the roadmap to COSO compliance and documentation based on textbook approaches and real-world guidance from our client engagements. Each attendee will go home with a set of 36 documents that were used to create the workshop.

Relax, learn and enjoy through expert instructor presentations, group discussions, role-playing, audit and compliance exercises, white-board diagramming and simulations.


Our CPE events are as entertaining as they are informative. Sit back and enjoy; be engaged and educated in a casual atmosphere of information exchange. We will not bore you!



This CPE event is for risk managers, internal auditors, information technology professionals, IT auditors and experienced business professionals.



The cost of this internal control  training course is $1,200.00 per attendee.

Each attendee will receive 18 CPEs Hours (YB). A certificate of completion will be provided.

Program Level of Understanding: Basic
Prerequisites: None
Advance Preparation: None
Delivery Format: Group Internet Based
NASBA Field(s) of Study: Auditing, Business Law, Business Management & Organization, Behavioral Ethics
CPE Credits: 18, based on 50 minutes of instruction per hour

Future Dates for CPE Events

  • Monday-Wednesday - March 7-9, 2022;

  • Monday-Wednesday - May 23-25, 2022;

  • Monday-Wednesday - July 11-13, 2022;

  • Monday-Wednesday - August 1-3, 2022;

  • Monday-Wednesday - September 19-21, 2022;

  • Monday-Wednesday - October 3-5, 2022;

  • Monday-Wednesday - November 28-30, 2022.


CPE Event Highlights

The seminar reviews the following:

  • Top Down risk-based Approach Defined

  • Best Practices to Control Environment Documentation and Assessment

  • Entity Level Control Documentation

  • Risk Assessment Documentation

  • How to Manage Communication with External Auditors and Audit Committee

  • Workshops focused on Major Deliverables


Learning Objectives

Attendees will learn how to:

  • Provide top down risk assessments and their application to the creation of internal controls

  • Apply COSO to the compliance requirements of the Sarbanes-Oxley Act

  • Discuss relationship with their external auditors under PCAOB Auditing Standards

  • Identify methods for improving their internal control frameworks


Key Items on the Agenda

Section 1 - Introduction and Overview

  • About Us and About Your Instructor

  • Who are You? What are Your Needs?

  • Overview of Agenda Tailored to Your Needs

Section 2 - History Lesson

  • What is "Internal Control" and Why Are Controls So Important?

  • What is "Risk"? Can Risk Be Managed?

  • Background of Internal Control Legislation

  • Regulatory Requirements from the SEC, PCAOB and Others

  • History of the COSO Committee

Section 3 - The COSO ICIF: Then and Now

  • Why was the COSO ICIF Developed?

  • The Original Framework

  • What Happened to Prompt the Update?

  • The Current Framework

Section 4 - Compliance Methodologies

  • Control-Based

  • Coverage-Based

  • Risk-Based

  • Discussion of Preferred Methods

Section 5 - Sarbanes-Oxley Act

  • What Happened in Year 2000?

  • The Details of the SOX Act

  • Compliance Requirements

  • Whistleblower Activity

  • Benefits of SOX Compliance

Section 6 - The Watchdog: PCAOB

  • Who are "They" and why were "They" formed?

  • The PCAOB Perspective

  • Enforcement Action - Dealing with External Auditors

  • PCAOB Alerts

Section 7 - COSO "Control Environment"

  • What is Your "Tone of Control"

  • The Influence of Entity Controls

Section 8 - COSO "Risk Assessment"

  • Guidance from COSO ERM

  • Defining, Documenting and Assessing Risk

Section 9 - COSO "Control Activities"

  • What are Control Activities?

  • The Seven Layers of Control

  • Testing and Documenting the Controls

  • The Design of Controls

  • The Operation of Controls

  • Assessing the Effectiveness of Controls

Section 10 - COSO "Information and Communication"

  • What Gets Communicated? When? To Whom?

  • Up, Down and Outside the Organization

Section 11 - COSO "Monitoring Activities"

  • What Should Be Monitored? When? How? Who?

Section 12 - Planning the COSO Compliance Assessment

  • Project Management Methodologies

  • Defining Your Risks

  • Assessing Risk in Your Organization

  • Determining the Risk Response

  • Documenting the Plan

Section 13 - Performing the Assessment

  • Assessing Entity Level Controls

  • Assessing Process Level Controls

  • Assessing IT General Controls

  • Assessing the Segregation of Duties

  • Internal Control Testing

  • Sampling Techniques - Documentation Examples

Section 14 - Concluding the Assessment

  • Evaluating Internal Control Deficiencies

  • What is the Severity?

  • CAPs and Accountability

  • Remediation Activity

  • Re-Testing

  • Opining

  • Summarizing for Executives and Boards

Section 15 - Documentation

  • Control and Compliance Self-Assessments

  • The Maturity Model

  • How Do We Document COSO Compliance?

  • Client Examples

Section 16 - Summary, Wrap-Up and Going Forward

  • Recap of COSO Compliance

  • Adjusting Compliance in Subsequent Years

  • Your Roadmap to Success!