CRISAM Sarbanes Oxley Act Knowledge Pack

The CRISAM® SOX Knowledge Pack contains the report “SOX compliance“ and supports listed companies in complying with the Sarbanes-Oxley Act requirements.

Key features and benefits

  • Is based on recommendations of recognised authorities (IT Governance Institute).
  • Provides relevant information in different levels of detail.
  • Limits the COBIT framework to the parts which are SOX relevant.
  • Available in English.

Figure 1: SOX compliance analysis report


Figure 2: Shows degree of compliance with SOX relevant controls

Sarbanes-Oxley Act

The Sarbanes-Oxley Act (SOX) imposes the managerial obligation to establish and consistently check an internal control system (Sec. 404). Most companies, which are subject to these duties, use the COSO framework. Even though COSO focuses on IT, it does not provide any support in implementing specific IT controls. For this reason, the relevant controls from COBIT are taken into account.


The CRISAM® SOX Knowledge Pack contains a compliance report, which is specially tailored to the Sarbanes- Oxley Act requirements. This report provides an overview of the degree of fulfillment of the relevant controls as well as detailed results for each control.

System requirements

CRISAM® Explorer
CRISAM® ISMS Knowledge Pack