Often, when the term Sarbanes-Oxley Act(SOX) comes up, individuals contemplate the testing processes that are required to be executed.  As evidenced in previous courses, many things must occur prior to even beginning to contemplate what, when and how to test.  Previous courses have discussed an overview of the Sarbanes-Oxley legislation at a high level, SOX authoritative bodies including the Public Company Accounting Oversight Board (PCAOB) and the Securities and Exchange Commission (SEC), the evolution of the Sarbanes-Oxley standards, performing a top down risk assessment (RA), evaluating entity level and soft controls, SOX sections 404, 302, 806, 902, and 906, and the connection to an internal control framework and the Committee of Sponsoring Organizations (COSO) 2013.

The Sarbanes-Oxley Act of 2002 (also known as SOX) was enacted to safeguard shareholders, investors, and the general public against corporate accounting inaccuracies and fraudulent accounting activities. SOX compliance testing is a year-round effort for public companies.

This course focuses on the validation of control operations, which is executed through tests of controls.  Tests can be performed in multiple ways and will be dependent on the type of control.  In some instances, several tests may be performed on one control.

Information within this course comes from readily available public domain documents and is utilized by the trainer as a supplement for relaying the course content.

Note: The concepts outlined in this course are up to date and relevant in regards to the Sarbanes-Oxley legislation. Although there have not been any changes in the legislative concepts of the law since it’s release in 2002, some aspects of executing the work have evolved. This speaker is preparing a series of courses titled “Sarbanes-Oxley 20 years later”. Those courses can be found individually on the platform and would be beneficial for anyone involved with compliance.

NOTE: The Instructor has created 5 new segments on Sarbanes-Oxley Update - 20 Years Later:
Sarbanes-Oxley Update - 20 Years Later: Accounting Risk Assessment Considerations
Sarbanes-Oxley Update - 20 Years Later: Sourcing Emerging Risks Part 1
Sarbanes-Oxley Update - 20 Years Later: Evaluating Testing Processes
Sarbanes-Oxley Update - 20 Years Later: Sourcing Emerging Risks Part 2
Sarbanes-Oxley Update - 20 Years Later: Examining Fraud Risks

Learning Objectives
  • Identify methods to ensure the proper controls are selected for testing.
  • Identify the variance between key controls and secondary controls.
  • Understand and execute testing procedures for design and operating effectiveness of controls.
  • Evaluate methods for executing testing such as: inquiry, observation, reperformance, walkthroughs, and data mining.
  • Explore the nature of timing for your test of controls.
Last updated/reviewed: August 25, 2023

Included In Certifications

This course is included in the following Certification Programs:

15 CoursesSarbanes-Oxley (SOX) Certification

  1. Sarbanes Oxley Overview
  2. Sarbanes-Oxley (SOX) Standards - Evolution
  3. Information Technology General Controls Primer
  4. COSO 2013 Overview
  5. Sarbanes-Oxley (SOX) Section 404
  6. Sarbanes-Oxley Section 302: ICFR
  7. Sarbanes-Oxley (SOX) And Fraud Sections
  8. Sarbanes-Oxley (SOX) - Top Down Risk Assessment Part 1
  9. Sarbanes-Oxley (SOX) - Top Down Risk Assessment Part 2
  10. Sarbanes-Oxley (SOX) - Entity Level Controls
  11. Sarbanes-Oxley (SOX) Identifying and Documenting Controls
  12. Sarbanes-Oxley (SOX) Testing
  13. Sarbanes-Oxley (SOX) - Assessing Data Impact
  14. XBRL - Connection to SOX 302/404 and Critical Roles
  15. Tools For Sarbanes-Oxley Compliance
88 Reviews (327 ratings)

Reviews

5
Anonymous Author
Great content, easy to follow, I like it. It is recommended to perform all the modules consecutive to have a structured knowledge.

3
Anonymous Author
This is a good overview of S404 testing and all the complexities that accompany it. It would have been great to have some more detail on inspection as the method of testing as the other methods (inquiry, observation and re-performance) were covered with examples. Also, I was pining for more detailed review of design effectiveness testing and how testing overall should cover management review controls and controls that cover system generated reports.

3
Anonymous Author
Course did a good job of providing a foundation for testing and examples of different types of tests that may be employed. The inclusion of data analytics and their use in testing was nice and I hope the instructor considers perhaps devoting an entire series of lectures relating them to SOX/IA.

5
Anonymous Author
This is an excellent course on testing controls - very informative and well-presented. A must for those new to control testing, but also full of experienced insight for those who have been doing this type of work for a while to also benefit.

4
Anonymous Author
It was very well structured, well-paced and easy to follow training course. Structuring the course in segments as well as offering a continuous play option is perfect for any learning style. The examples given were good.

5
Anonymous Author
This was neat course! Short but sweet, yet thorough as always! This was a really good lesson on the testing of controls and the types of testing methods for different categories of controls. Really well done!

5
Member's Profile
This course was a great review of the types of testing used when conducting a Sarbanes Oxley audit. It covered the type of information and the means to ensure that controls provide evidence to prevent a MM.

5
Member's Profile
Course material was presented clearly. Slides meaningfully demonstrated the important concepts covered. The instructor is knowledgeable about the subject matter and offers valuable personal insight.

4
Anonymous Author
The testing principles in this webinar are very informative and further enhances the understanding of what is involved with SOX Compliance. As always, very well explained with good examples.

5
Anonymous Author
A great course for anyone learning about SOX testing and the nature, timing and extent of procedures to be performed. Good to see it also covered data analysis which is a hot topic these days.

4
Anonymous Author
This course was helpful in understanding how to test controls. If you know anything about internal controls, this course might cover general knowledge you already know.

5
Member's Profile
This is a great refresher even for a non SOX audit activity. My Company is not public, but these are still foundational audit techniques I can share with newer staff.

5
Anonymous Author
Very thorough overview of SOX testing. Very good session for new auditors to SOX testing. Validated what we are doing at our company for our SOX testing.

5
Member's Profile
Lynn Fountain's webinars are concise and thorough. Anyone without experience would get a clear understanding of the subject matter and what's required.

5
Anonymous Author
Excellent course!!!Stated learning objectives were met, stated prerequisite requirements were appropriate and sufficient and instructor was effective.

5
Anonymous Author
I enjoyed the level of detail provided for this course, the presenter is knowledgeable and provides great examples and keeps it interesting enough.

4
Anonymous Author
The presenter was knowledgeable and provided great examples. This is a course I would highly recommend to those new to SOX or to testing of ICOFR.

5
Anonymous Author
This was a good overview of SOX control testing strategies and documentation. Course content were clear, well explained, and to the point.

4
Anonymous Author
This course is very good. A lot of valuable information were provided. The materials are helpful and the time allotted is about right.

4
Member's Profile
This webinar was very informative, and the detailed definitions and examples provided for SOX testing help to further my understanding.

5
Member's Profile
The objectives of this course were met. Lynn provides multiple considerations and an overview of what is required before a testing.

4
Anonymous Author
Great primer on testing. Increased information about continuous auditing/complete sample through data mining could be helpful.

4
Anonymous Author
This is a great course for those new to SOX concepts, or for those who have forgotten what they learned in college.

5
Anonymous Author
This was a thoroughly delivered course by Lynn - as always. Nature of testing and walkthroughs is well covered.

5
Member's Profile
Excellent course material and very well articulated by the trainer, and supported by a good number of examples.

5
Member's Profile
Informative discussion of testing of controls based on SOX, it also includes data mining and analytical topics.

4
Anonymous Author
This course gave good understaning of the testing methods to evaluate if the control is operating effectively.

4
Member's Profile
Good refresher on SOx testing. Good to go back to some of those concepts. The lecturer is as always very good.

5
Member's Profile
This course define the testing process and requirements for an organization to ensure controls are effective.

5
Anonymous Author
I liked the amount of detail discussed with regard to actual testing procedures. Not too much in the weeds.

5
Anonymous Author
This course provided great insight into Testing of Controls, especially Walkthroughs and Re-performace.

4
Member's Profile
Course was very useful and insigthful, the presenter gave good examples and it was also easy to follow.

5
Member's Profile
Great class for newbies and for seasoned auditors. I'll definitely keep this as a reference source.

5
Anonymous Author
This is a very interesting course on SOX testing. The material is very easy to understand and concise.

4
Member's Profile
It is a good lecture.It can be rather confusing sometimes.I think more time should be allowed for it.

5
Anonymous Author
The repetition of testing principles through different topics will help me remember what I learned.

5
Anonymous Author
Great overview of design and operating effective. Language was quite simple and easy to understand.

5
Member's Profile
Good explanation of the key concepts and providing in-depth knowledge of how and when to test ICFR

4
Member's Profile
Great learning about tst procedures and design. Type of testing that can be done and data mining.

5
Anonymous Author
Provided great detail over the various testing methodologies over control operating effectiveness

5
Anonymous Author
This course was excellent and provided important information that I will utilize in the future.

5
Anonymous Author
Great introduction to what is, in my opinion, the most difficult section of the SOX compliance.

4
Anonymous Author
The course is clear and organized. I was surprised to learn about data mining in SOX testing.

5
Anonymous Author
This course is very interesting and gives ideas for testing and what needs to be considered.

5
Anonymous Author
This testing course was very informative with good context the nature and timing of testing.

4
Anonymous Author
This was a helpful review of SOX testing and the slides will be a good resource. Thank you.

4
Member's Profile
Great course with a lot of useful information.

4
Anonymous Author
Good overall course on testing of controls. Reminders throughout the course are pertinent.

4
Member's Profile
SOX testing course was detailed and meaningful which provides a very good understanding.

5
Anonymous Author
Great explanations and examples. The material is really easy to understand and follow.

5
Anonymous Author
The instructor did a good job of relating audit tasks back to the auditing standards.

5
Anonymous Author
I found the details on the components of successful walkthrough procedures helpful.

5
Anonymous Author
Great course very informative and on point to guide you on key controls and testing

5
Member's Profile
Good information and background to work that I do as part of job responsibilities

5
Member's Profile
Very well-designed course and provide learner a brief learning about these topics.

5
Anonymous Author
This was a great course covering the types of testing completed for SOX testing.

5
Member's Profile
This course provided a nice high level overview of SOX testing requirements.

5
Anonymous Author
SOX testing requirements and options are clearly demonstrated in this course.

5
Anonymous Author
It was a great learning experience about the SOX testing. Thank you so much.

5
Member's Profile
Not that hard materials in this section but nicely presented and explained.

3
Member's Profile
The learning activity was engaging and appropriate. It met my expectations.

5
Anonymous Author
Great course to obtain an overall understanding of the testing process.

4
Anonymous Author
organized and detailed information. organized and detailed information.

4
Member's Profile
Very good course, Its good to have a one presentation rather than many

5
Member's Profile
Very helpful technical information explained very well with examples.

4
Anonymous Author
Complete information and relevant to most recent development of SOX.

5
Member's Profile
All objectives identified for this course were met for this course.

5
Anonymous Author
Good course. I found the content easily digestible and relevant.

5
Anonymous Author
Good learning experience. Course well structured and presented.

5
Anonymous Author
Good overview of SOX testing and effective delivery of material.

4
Member's Profile
Good refresher for those that have some experience in this area

3
Anonymous Author
thanks for the training. I found it very useful and didactic.

5
Anonymous Author
It felt more like a refresher course and nothing surprised me

4
Anonymous Author
The working and the explanation was good and understanding.

4
Anonymous Author
Good course covering the important aspects of SOX testing.

5
Member's Profile
Objectives Learnt, Requirements Met, Relevant, Appopriate

3
Member's Profile
I have completed the course and have no further comments.

4
Member's Profile
Informative course - not much more applicable to comment

3
Anonymous Author
well thought out and acceptable for cpe review purposes

5
Anonymous Author
Good overall review of SOX testing. Would recommend.

5
Member's Profile
This was a little more in-depth and I enjoyed it

5
Member's Profile
Very nice refresher training.

4
Anonymous Author
Excellent information.

4
Member's Profile
Great Presentation

4
Anonymous Author
Great stuff.

5
Member's Profile
great!

5
Member's Profile
Great

3
Anonymous Author
Good

Prerequisites
Course Complexity: Intermediate

No Advanced Preparation or Prerequisites are needed for this course, but completion of the instructor's previous webinars on Sarbanes-Oxley (SOX) may be helpful.

Education Provider Information
Company: Illumeo, Inc., 75 East Santa Clara St., Suite 1215, San Jose, CA 95113
Contact: For more information regarding this course, including complaint and cancellation policies, please contact our offices at (408) 400- 3993 or send an e-mail to .
Instructor for this course
Course Syllabus
INTRODUCTION and OVERVIEW
  Introduction to Sarbanes-Oxley (SOX) Testing7:47
Sarbanes-Oxley (SOX) Testing
  Selecting Controls to Test 5:11
  Design Effectiveness 6:12
  Testing Operating Effectiveness 3:12
  Relationship of Risk to Controls Tested 10:58
  SOX - Nature of Tests 3:35
  SOX - Timing of Tests 3:01
  Key Vs. Secondary Controls 5:32
  Inquiry 10:57
  Walkthroughs 10:43
  Data Mining and Analytical 8:38
CONCLUSION
  Course Summary 9:35
Continuous Play
  Sarbanes-Oxley (SOX) Testing 1:25:22
SUPPORTING MATERIALS
  Slides: TestingPDF
  Testing Glossary/IndexPDF
REVIEW and TEST
  REVIEW QUESTIONSquiz
 FINAL EXAMexam