Intermediate

SOX risk-control matrix (RCM) generator for a process

Creates a SOX RCM with risks, controls, evidence, and testing attributes. Useful for building or refreshing SOX documentation efficiently.

Generate a SOX RCM for the {process_name} process.

Inputs:
- Process description: {process_description}
- Key risks: {key_risks}
- Control activities (existing/proposed): {control_activities}
- Systems and reports: {systems_reports}
- Frequency and owners: {frequency_owners}

Output:
1) RCM table: Risk, Control, Control type (prevent/detect), Frequency, Owner, Evidence, Key report dependencies, COSO component.
2) Testing attributes and suggested sample size by frequency.
3) Gaps and recommended new controls.
4) Change log for updates since last year.

Make it easy to paste into a SOX tool.

Related Prompts

Compliance & Regulatory
Advanced

Cybersecurity Incident Response Plan (Firm)

A step-by-step guide for what the firm must do if client data is breached.

GPT-4oClaude 3.5 Sonnet
0
0
6
Compliance & Regulatory
Intermediate

Conflict Minerals Disclosure (Form SD)

Drafts the narrative for companies sourcing minerals like tin, tungsten, or gold.

GPT-4oGemini 1.5 Pro
0
0
12
Compliance & Regulatory
Intermediate

Beneficial Ownership Information (BOI) Reporting Logic

Determines if a company must report its 'beneficial owners' under the Corporate Transparency Act.

GPT-4oClaude 3.5 Sonnet
0
0
7