ERE Information Security Auditors
Home | Site Map | Contact Us |  Resource Center
list of IT security and compliance audit steps
ERE Differentiators from other vendors

IT SOX Audit, CSOX Compliance Audit and Financial Regulatory Compliance Auditing

ERE provides third party, impartial, CISSP expertise in SOX compliant audit services, CSOX compliance auditing, and IT SOX compliance auditing for all standards and policies. We identify:

  • Compliance violations for specific control points.
  • Compare results with a client’s third party auditor’s SOX compliance checklist or other standard’s checklist.
  • Correlate security risks with compliance requirements for Sarbanes Oxley Security and other standards.
  • Triage and prioritize compliance violations and security risks.
  • Specify mitigation steps for each compliance violation and security risk.

The scope of ERE Financial regulatory audits encompass:

PCI DSS Compliance Readiness Audit and Compliance Remediation Services
ERE provides a comprehensive compliance readiness audit for the latest PCI DSS revision. As our clients have requested, we also provide remediation services including policy creation / revisions, procedures creation / revisions, IT security technology / architecture / configuration recommendations, GRC consulting, and remedial project planning. The client is then ready for a formal PCI DSS audit.

Canadian SOX IT Audit
ERE’s Canadian SOX compliant audit or SOX compliance Canada audit service assists executives and managers of corporations traded on Canadian stock exchanges to identify and mitigate liability. Both corporations and employees are now potentially exposed to law suits launched by shareholders who claim they have been misled.
See more

SOX Auditing
The ISACA prescriptive document for IT security compliance for Sarbanes Oxley specifies many audit control points. ERE has experience and expertise with all IT control objectives for Sarbanes Oxley, both with one time and 7/24 compliance audit services. For assistance to our clients we provide a SOX compliance checklist. Please see more about our 7/24 Compliance Monitoring Service.
See more
Audit Report
The ERE IT Sox audit report is clear, easy to understand; call to action oriented, and has directed content for both non technical executives and for the very technical operations team.
See more
Knowledge Transfer
Our CISSP IT security auditors provide extensive knowledge transfer before, during and post audit, assists the client to lever the maximum return on investment in the audit report.
See more
Audit Methodology
All of our IT security auditors utilize our standardized audit methodology, to ensure all clients’ expectations are met or exceeded by the work product of the audit report. We set expectations clearly with a crystal clear statement of work, an audit checklist template, and an audit report template.
See more

Contact Us Right Up Front

Let us assist you to budget for your next compliance audit. May we send you a SOX audit template or SOX audit checklist? Contact us and we'll help you scope the right sized audit for you.


Contact Us

905 764 3246

  Budgetary Price Quote
  10 minute scope definition call
  ROI Calculation for your next Audit 
  Sanitized Statement of Work
  Sanitized Audit Report
  Product Literature  
  White Papers and Published Articles
  Please see Ron Lepofsky’s book,
The Manager’s Guide to Web Application Security,
published by Apress Media

The Manager's Guide to Web Application Security is a concise, information-packed guide to application security risks every organization faces, written in plain language, with guidance on how to deal with those issues quickly and effectively.

Home | Technology Audits | Compliance Audits | Process Audits | Doc Audit/Authorship| | 7x24 Monitoring | Knowledge Transfer
ERE Differentiators | About Us | Site map | Contact Us | |   | Resource Center
Copyrights © 2007-2008. All rights reserved.  

   AddThis Social Bookmark Button