For regulated organizations, we can perform SOX 404 Audits (relating to Section 404 of the Sarbanes-Oxley Act of 2002) for auditing of internal control over financial reporting. Organizations receive documented opinion on management's assessment of the effectiveness of the company's internal control over financial reporting. This audit, often used in conjunction with an Information Systems Audit, is based on evidence we obtain by:

• Evaluating management's assessment process
• Identifying accounts, assertions and processes
• Evaluating and testing the design of internal controls
• Evaluating and testing operating effectiveness

A fully certified team

The SJU advantage includes in-depth audit experience and professional certifications:

• Certified Information System Auditor (CISA)
• Certified Fraud Examiner (CFE)
• Certified Information Technology Professional (CITP)
• Certified in the Governance of Enterprise IT (CGEIT)
• Certified Internal Auditor (CIA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Risk and Information Systems Control (CRISC)
• Certified Public Accountant (CPA)