SlideShare a Scribd company logo

Sarbanes oxley compliance

MetricStream Inc
MetricStream Inc
1 of 2
Download to read offline
CASE STUDY MetricStream OPTIMIZING SARBANES-OXLEY COMPLIANCE FOR BETTER BUSINESS PERFORMANCE Overview A large organization that together with its subsidiaries, provides business communication solutions to a wide range of customers - from corporate enterprises such as manufacturers, retailers, financial institutions, utilities and healthcare organizations, to large universities and K-12 school districts, to federal and local governments worldwide. The company has a global network of distributors, resellers, and field sales force. The company’s commitment to quality and excellence sets it a class apart from competition. Being a regulated company, it strives to follow regulations and mandates including SEC regulations, SOX compliance, and many other governance, risk, compliance, ethics, and business conduct related poli- cies and procedures. Challenge The company embarked on a comprehensive compliance and risk management plan to enhance operational effectiveness across its principal subsidiaries. A close scrutiny of existing organizational Benefits architecture, however, revealed that the company’s existing system for managing risk, controls, and reporting had a number of limitations. With no collaboration or co-ordination between different risk- Reduced Cost, Time, and Effort: By the virtue of the control groups, the company managed regulatory changes in silos, focused narrowly on compliance, SOX Stream, the MetricStream’s solution for auto- and used compartmentalized regulatory controls. The internal control structure was not sustainable, mating and streamlining Sarbanes-Oxley compliance which made the implementation of changes a daunting task. Due to limited analytics and reporting has dramatically reduced the time and effort being capabilities, the company’s executive management struggled to obtain a comprehensive view of spent on risk and compliance related activities. the overall risk environment. Lack of systematized operational testing led to a significant manual Automated information flows, assessments and test- activity and paper-based documentation. The system lacked issue management capabilities. Issues ing, and remediation assignments have dramatically reduced over all compliance costs. scenarios were tracked in a separate MS Access database, increasing its vulnerability. Moreover, the company identified the need for an integrated platform for its global supply chain, which could encom- pass the SCAR process and consolidate the supplier-related processes and systems. Improved Control on the Process: The Metric- Stream solution enforced consistent financial controls process across the enterprise eliminating deviations One of the senior board members explains, “We needed a solution that could serve as the center- and errors as well as redundant activities. piece of our SOX compliance efficiency efforts, and provide a comprehensive platform for design, test, reporting, disclosure, and remediation of internal controls to support effective risk management.” Increased Efficiency and Collaboration: Risk- related controls groups are now able to carry out team activities in a productive manner with the Solution collaborative environment that the MetricStream The MetricStream solution was selected following an exhaustive competitive evaluation. Recalling solution provides. the selection process, the CIO of the organization comments, “We tested MetricStream, and found Enhanced Transparency and Visibility: Comprehen- that the solution had distinct capabilities to provide an enterprise-wide internal controls platform for sive visibility provided by the MetricStream solution financial and non-financial controls, with implementation focusing specifically on SOX controls.” has lowered the risk of non-compliance, assuring the executives of higher customer and investor The organization wanted to entirely replace their existing risk and compliance system by mapping all confidence. business flows to the MetricStream solution. The total timeline from project kickoff to implementation Streamlined Change Control: The MetricStream was less than nine weeks. The deployment steps, covered in this timeframe, included: solution enabled integrated document management with change control capabilities to keep documenta- Standardizing Internal Controls: The MetricStream solution provided a central repository for all tion and processes in sync. This significantly reduced types of company’s control systems, including those for operational efficiency, regulatory compliance, the amount of redo of documentation for ongoing and financial reporting. The solution provided standardized tests for internal controls with automated compliance. scoring & reporting to ensure that internal controls were tested in a consistent manner across all operations within the company and over time. Improved Reporting Capabilities: The MetricStream solution provided compliance dashboards and risk heat maps to enable enterprise-wide visibility into Implementing Standard Documentation: The MetricStream solution established an integrated docu- the financial controls management and compliance ment repository (DMS) to store documents pertaining to processes and controls across all subsidiar- process, and highlight issues that need to be ies. The solution also implemented a well defined review process to ensure that only people with the addressed. right authorization could update and review the documents. Simplifying Change Management: The MetricStream solution enabled sharing of documented risks and controls across processes - allowing them to rationalize and reduce their documented controls, and simplify their change management process. Automating Issue Management: The solution automated the company’s issue management process to provide complete visibility into the entire lifecycle of issues – from identification through root cause analysis to remediation.
MetricStream Enhancing Reporting Capabilities: The MetricStream solution featured executive dashboards which Why MetricStream provided enterprise-wide visibility into the internal controls and processes, and highlighted the high- priority cases that needed to be addressed. The solution provided complete real-time visibility into ex- ception data with analytics for trend analysis. Reports for status tracking, scorecards and compliance Robust Enterprise Compliance Platform, with a broad set of functional modules. that serves as the dashboards could be readily accessed. Flexible reports with drilldown capability provided statistics foundation for the company’s risk management and and data by a variety of parameters such as business units, processes, and divisions. compliance needs Enabling Operational Testing: The MetricStream solution established testing as an integral part of Enhanced collaboration amongst control groups to the enterprise-wide processes and controls. The ability to export information from reports into spread- enable company control risk, drive business perfor- sheets simplified the overall operational testing process. The solution easily replicated reports such as mance, and inspire stakeholder confidence Program Progress and Deficiency Status that were popularly-used but manually created in Excel previ- ously. Standard Internal Controls and Processes that enable setting up clear roles and accountabilities for internal controls, including responsibility for the defining, “We continue to be impressed with the richness of MetricStream’s SOX solution and their documenting, testing, and monitoring of controls and the remediating of problems ability to help deploy the solution in such a short timeframe. It speaks volumes about the configurability and richness of their solution.” says Chief Information Officer. Ability to configure off-the-shelf modules to adapt to best practices and incorporate specific business processes followed in the company Establishing SCAR and CAPA: The MetricStream solution provided a comprehensive SCAR and Powerful reporting for audit data analysis as well as CAPA solution that enabled the company to streamline quality management processes across their risk reporting supply chain. Based on the industry standard 8D methodology, the solution supported identification, evaluation, segregation and disposition of non-conforming material as well as case investigation, Low Total Cost of Ownership tracking, and remediation. Leveraging Compliance Online: The organization leveraged the tremendous value offered by the Met- ricStream’s ComplianceOnline.com. The company was able to use the portal to effectively implement and adopt compliance programs through online training, alerts, vertical search, discussion forums, and best practices library services. As the CIO further states, “The flexibility and richness of the MetricStream solution including integration with ComplianceOnline were the key reasons for choosing MetricStream. We are happy with our selection and initial results.” For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.

Recommended

A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management MetricStream Inc
 
Compliane software-solutions
Compliane software-solutionsCompliane software-solutions
Compliane software-solutionsMetricStream Inc
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...MetricStream Inc
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS MetricStream Inc
 
A Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementA Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementVERSE Solutions
 
Quality Management System
Quality Management System Quality Management System
Quality Management System MetricStream Inc
 

Recommended

A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management BCBS Associate Achieves Superior Compliance, Audit & Issue Management
BCBS Associate Achieves Superior Compliance, Audit & Issue Management MetricStream Inc
 
Compliane software-solutions
Compliane software-solutionsCompliane software-solutions
Compliane software-solutionsMetricStream Inc
 
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...
BCBS Affiliate strengthens its Healthcare Compliance through Automation and I...MetricStream Inc
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 
Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS Compliance, Risk and Audit - BCBS
Compliance, Risk and Audit - BCBS MetricStream Inc
 
A Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementA Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementVERSE Solutions
 
Quality Management System
Quality Management System Quality Management System
Quality Management System MetricStream Inc
 
Quality management structure
Quality management structureQuality management structure
Quality management structureselinasimpson2501
 
Defining Segregation of Duties
Defining Segregation of DutiesDefining Segregation of Duties
Defining Segregation of DutiesWill Kelly
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analyticsprosenzw69
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions MetricStream Inc
 
A Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC CompanyA Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC CompanyShyam Mohamed, MSc., LSSBB
 
Business Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing ValueBusiness Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing ValueDavid Coleman
 
Governance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences CompaniesGovernance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences CompaniesFindWhitePapers
 
Audit solution airline
Audit solution airlineAudit solution airline
Audit solution airlineMetricStream Inc
 
Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2justinklooster
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyCovance
 
Implementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in TelecomsImplementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in TelecomsGlobal Risk Forum GRFDavos
 
Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013Allegro Development
 
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Performance Management
 
Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016Geoff Clark
 
LRQA ISO Standards Update - Integration as Standard? October 2013
LRQA ISO Standards Update - Integration as Standard? October 2013LRQA ISO Standards Update - Integration as Standard? October 2013
LRQA ISO Standards Update - Integration as Standard? October 2013Lloyd's Register - Management Systems
 
Benefits of a Project Management Control System
Benefits of a Project Management Control SystemBenefits of a Project Management Control System
Benefits of a Project Management Control SystemDavid Scheele
 
Allegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System ImplementationAllegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System Implementationrobertjparker
 
Financial Services World Quality Report 2012
Financial Services World Quality Report 2012Financial Services World Quality Report 2012
Financial Services World Quality Report 2012Capgemini
 
Hcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companiesHcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companiesHcl Brand
 
Compliance Framework
Compliance FrameworkCompliance Framework
Compliance Frameworkbarnetdh
 
Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry MetricStream Inc
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 

More Related Content

What's hot

Quality management structure
Quality management structureQuality management structure
Quality management structureselinasimpson2501
 
Defining Segregation of Duties
Defining Segregation of DutiesDefining Segregation of Duties
Defining Segregation of DutiesWill Kelly
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analyticsprosenzw69
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions MetricStream Inc
 
A Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC CompanyA Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC CompanyShyam Mohamed, MSc., LSSBB
 
Business Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing ValueBusiness Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing ValueDavid Coleman
 
Governance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences CompaniesGovernance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences CompaniesFindWhitePapers
 
Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2justinklooster
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyCovance
 
Implementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in TelecomsImplementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in TelecomsGlobal Risk Forum GRFDavos
 
Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013Allegro Development
 
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Performance Management
 
Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016Geoff Clark
 
Benefits of a Project Management Control System
Benefits of a Project Management Control SystemBenefits of a Project Management Control System
Benefits of a Project Management Control SystemDavid Scheele
 
Allegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System ImplementationAllegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System Implementationrobertjparker
 
Financial Services World Quality Report 2012
Financial Services World Quality Report 2012Financial Services World Quality Report 2012
Financial Services World Quality Report 2012Capgemini
 
Hcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companiesHcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companiesHcl Brand
 
Compliance Framework
Compliance FrameworkCompliance Framework
Compliance Frameworkbarnetdh
 

What's hot (20)

Quality management structure
Quality management structureQuality management structure
Quality management structure
 
Defining Segregation of Duties
Defining Segregation of DutiesDefining Segregation of Duties
Defining Segregation of Duties
 
AIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data AnalyticsAIA SOX Conference May 2009 - CCM & Data Analytics
AIA SOX Conference May 2009 - CCM & Data Analytics
 
NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions NAIC MAR Compliance Solutions
NAIC MAR Compliance Solutions
 
A Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC CompanyA Proposal for A Quality Management System – Based on Acquisition of ABC Company
A Proposal for A Quality Management System – Based on Acquisition of ABC Company
 
Business Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing ValueBusiness Rules Managment Systems; Maximizing Value
Business Rules Managment Systems; Maximizing Value
 
Governance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences CompaniesGovernance, Risk and Compliance for Life Sciences Companies
Governance, Risk and Compliance for Life Sciences Companies
 
Audit solution airline
Audit solution airlineAudit solution airline
Audit solution airline
 
Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2Reciprocity_Consolidated Objectives eBook v2
Reciprocity_Consolidated Objectives eBook v2
 
Integrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug SafetyIntegrated Technology Solutions for Drug Safety
Integrated Technology Solutions for Drug Safety
 
Implementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in TelecomsImplementing a Business Continuity Management System in Telecoms
Implementing a Business Continuity Management System in Telecoms
 
Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013Energy Risk Magazines ETRM Software Rankings 2013
Energy Risk Magazines ETRM Software Rankings 2013
 
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon ClinicalsMcKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
McKesson Enterprise Intelligence - Quality eMeasures for Horizon Clinicals
 
Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016Geoff Clark Resume 12 Sep 2016
Geoff Clark Resume 12 Sep 2016
 
LRQA ISO Standards Update - Integration as Standard? October 2013
LRQA ISO Standards Update - Integration as Standard? October 2013LRQA ISO Standards Update - Integration as Standard? October 2013
LRQA ISO Standards Update - Integration as Standard? October 2013
 
Benefits of a Project Management Control System
Benefits of a Project Management Control SystemBenefits of a Project Management Control System
Benefits of a Project Management Control System
 
Allegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System ImplementationAllegro Opportune Success Factors For Etrm System Implementation
Allegro Opportune Success Factors For Etrm System Implementation
 
Financial Services World Quality Report 2012
Financial Services World Quality Report 2012Financial Services World Quality Report 2012
Financial Services World Quality Report 2012
 
Hcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companiesHcl provides integrated service management to leading pharmaceutical companies
Hcl provides integrated service management to leading pharmaceutical companies
 
Compliance Framework
Compliance FrameworkCompliance Framework
Compliance Framework
 

Similar to Sarbanes oxley compliance

Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry MetricStream Inc
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry MetricStream Inc
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-auditMetricStream Inc
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-ormMetricStream Inc
 
Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream MetricStream Inc
 
An Introduction to econsys
An Introduction to econsysAn Introduction to econsys
An Introduction to econsysAndrew Redfern
 
LinkedInProfile_Deck09072016
LinkedInProfile_Deck09072016LinkedInProfile_Deck09072016
LinkedInProfile_Deck09072016buckkulkarni
 
Adaptive grc life_sciences_case_study
Adaptive grc life_sciences_case_studyAdaptive grc life_sciences_case_study
Adaptive grc life_sciences_case_studyRob Johnston, MBA
 
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...D. Scott Clark
 
DocMinder Compliance Regulation
DocMinder Compliance RegulationDocMinder Compliance Regulation
DocMinder Compliance RegulationChristina Thomas
 
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...Newgen Software Technologies Limited
 
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdf
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdfThe Complete Guide to Building an Effective Enterprise Testing Strategy.pdf
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdfkalichargn70th171
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control MetricStream Inc
 

Similar to Sarbanes oxley compliance (20)

Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry Powering SOX, NERC, FERC Compliance -Energy Industry
Powering SOX, NERC, FERC Compliance -Energy Industry
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
Internal Audit Solution
Internal Audit Solution Internal Audit Solution
Internal Audit Solution
 
Quality Audit Management – Food Industry
Quality Audit Management – Food Industry Quality Audit Management – Food Industry
Quality Audit Management – Food Industry
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-audit
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-orm
 
Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream Internal Audit Solution - MetricStream
Internal Audit Solution - MetricStream
 
Msfairchildcasestudy
MsfairchildcasestudyMsfairchildcasestudy
Msfairchildcasestudy
 
Presentation1.pptx
Presentation1.pptxPresentation1.pptx
Presentation1.pptx
 
An Introduction to econsys
An Introduction to econsysAn Introduction to econsys
An Introduction to econsys
 
Axis Consulting Case Studies
Axis Consulting Case StudiesAxis Consulting Case Studies
Axis Consulting Case Studies
 
LinkedInProfile_Deck09072016
LinkedInProfile_Deck09072016LinkedInProfile_Deck09072016
LinkedInProfile_Deck09072016
 
Adaptive grc life_sciences_case_study
Adaptive grc life_sciences_case_studyAdaptive grc life_sciences_case_study
Adaptive grc life_sciences_case_study
 
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...
GLOBAL LIFE SCIENCES COMPANY USES ADAPTIVEGRC SUITE TO MANAGE RISK & COMPLI...
 
Auto audit
Auto auditAuto audit
Auto audit
 
DocMinder Compliance Regulation
DocMinder Compliance RegulationDocMinder Compliance Regulation
DocMinder Compliance Regulation
 
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...
Leading US Healthcare Payer Transforms Multiple Processes with Newgen’s BPM S...
 
Newgen’s Healthcare Payer Practice
Newgen’s Healthcare Payer PracticeNewgen’s Healthcare Payer Practice
Newgen’s Healthcare Payer Practice
 
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdf
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdfThe Complete Guide to Building an Effective Enterprise Testing Strategy.pdf
The Complete Guide to Building an Effective Enterprise Testing Strategy.pdf
 
Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control Global Bank Brings Compliance Risks under Control
Global Bank Brings Compliance Risks under Control
 

More from MetricStream Inc

Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-managementMetricStream Inc
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solutionMetricStream Inc
 
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream Inc
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA MetricStream Inc
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-complianceMetricStream Inc
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance complianceMetricStream Inc
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance MetricStream Inc
 

More from MetricStream Inc (10)

Regulatory relationship-management
Regulatory relationship-managementRegulatory relationship-management
Regulatory relationship-management
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solution
 
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
MetricStream AppStudio Accelerates the Creation & Configuration of GRC Soluti...
 
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
Clinical Research Org. Intensifies Compliance by Automating Audit & CAPA
 
Supplier quality-compliance
Supplier quality-complianceSupplier quality-compliance
Supplier quality-compliance
 
NERC Compliance Solution
NERC Compliance Solution NERC Compliance Solution
NERC Compliance Solution
 
Health insurance compliance
Health insurance complianceHealth insurance compliance
Health insurance compliance
 
Iso9000 compliance
Iso9000 complianceIso9000 compliance
Iso9000 compliance
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management
 
Healthcare Audit Compliance
Healthcare Audit Compliance Healthcare Audit Compliance
Healthcare Audit Compliance
 

Sarbanes oxley compliance

  • 1. CASE STUDY MetricStream OPTIMIZING SARBANES-OXLEY COMPLIANCE FOR BETTER BUSINESS PERFORMANCE Overview A large organization that together with its subsidiaries, provides business communication solutions to a wide range of customers - from corporate enterprises such as manufacturers, retailers, financial institutions, utilities and healthcare organizations, to large universities and K-12 school districts, to federal and local governments worldwide. The company has a global network of distributors, resellers, and field sales force. The company’s commitment to quality and excellence sets it a class apart from competition. Being a regulated company, it strives to follow regulations and mandates including SEC regulations, SOX compliance, and many other governance, risk, compliance, ethics, and business conduct related poli- cies and procedures. Challenge The company embarked on a comprehensive compliance and risk management plan to enhance operational effectiveness across its principal subsidiaries. A close scrutiny of existing organizational Benefits architecture, however, revealed that the company’s existing system for managing risk, controls, and reporting had a number of limitations. With no collaboration or co-ordination between different risk- Reduced Cost, Time, and Effort: By the virtue of the control groups, the company managed regulatory changes in silos, focused narrowly on compliance, SOX Stream, the MetricStream’s solution for auto- and used compartmentalized regulatory controls. The internal control structure was not sustainable, mating and streamlining Sarbanes-Oxley compliance which made the implementation of changes a daunting task. Due to limited analytics and reporting has dramatically reduced the time and effort being capabilities, the company’s executive management struggled to obtain a comprehensive view of spent on risk and compliance related activities. the overall risk environment. Lack of systematized operational testing led to a significant manual Automated information flows, assessments and test- activity and paper-based documentation. The system lacked issue management capabilities. Issues ing, and remediation assignments have dramatically reduced over all compliance costs. scenarios were tracked in a separate MS Access database, increasing its vulnerability. Moreover, the company identified the need for an integrated platform for its global supply chain, which could encom- pass the SCAR process and consolidate the supplier-related processes and systems. Improved Control on the Process: The Metric- Stream solution enforced consistent financial controls process across the enterprise eliminating deviations One of the senior board members explains, “We needed a solution that could serve as the center- and errors as well as redundant activities. piece of our SOX compliance efficiency efforts, and provide a comprehensive platform for design, test, reporting, disclosure, and remediation of internal controls to support effective risk management.” Increased Efficiency and Collaboration: Risk- related controls groups are now able to carry out team activities in a productive manner with the Solution collaborative environment that the MetricStream The MetricStream solution was selected following an exhaustive competitive evaluation. Recalling solution provides. the selection process, the CIO of the organization comments, “We tested MetricStream, and found Enhanced Transparency and Visibility: Comprehen- that the solution had distinct capabilities to provide an enterprise-wide internal controls platform for sive visibility provided by the MetricStream solution financial and non-financial controls, with implementation focusing specifically on SOX controls.” has lowered the risk of non-compliance, assuring the executives of higher customer and investor The organization wanted to entirely replace their existing risk and compliance system by mapping all confidence. business flows to the MetricStream solution. The total timeline from project kickoff to implementation Streamlined Change Control: The MetricStream was less than nine weeks. The deployment steps, covered in this timeframe, included: solution enabled integrated document management with change control capabilities to keep documenta- Standardizing Internal Controls: The MetricStream solution provided a central repository for all tion and processes in sync. This significantly reduced types of company’s control systems, including those for operational efficiency, regulatory compliance, the amount of redo of documentation for ongoing and financial reporting. The solution provided standardized tests for internal controls with automated compliance. scoring & reporting to ensure that internal controls were tested in a consistent manner across all operations within the company and over time. Improved Reporting Capabilities: The MetricStream solution provided compliance dashboards and risk heat maps to enable enterprise-wide visibility into Implementing Standard Documentation: The MetricStream solution established an integrated docu- the financial controls management and compliance ment repository (DMS) to store documents pertaining to processes and controls across all subsidiar- process, and highlight issues that need to be ies. The solution also implemented a well defined review process to ensure that only people with the addressed. right authorization could update and review the documents. Simplifying Change Management: The MetricStream solution enabled sharing of documented risks and controls across processes - allowing them to rationalize and reduce their documented controls, and simplify their change management process. Automating Issue Management: The solution automated the company’s issue management process to provide complete visibility into the entire lifecycle of issues – from identification through root cause analysis to remediation.
  • 2. MetricStream Enhancing Reporting Capabilities: The MetricStream solution featured executive dashboards which Why MetricStream provided enterprise-wide visibility into the internal controls and processes, and highlighted the high- priority cases that needed to be addressed. The solution provided complete real-time visibility into ex- ception data with analytics for trend analysis. Reports for status tracking, scorecards and compliance Robust Enterprise Compliance Platform, with a broad set of functional modules. that serves as the dashboards could be readily accessed. Flexible reports with drilldown capability provided statistics foundation for the company’s risk management and and data by a variety of parameters such as business units, processes, and divisions. compliance needs Enabling Operational Testing: The MetricStream solution established testing as an integral part of Enhanced collaboration amongst control groups to the enterprise-wide processes and controls. The ability to export information from reports into spread- enable company control risk, drive business perfor- sheets simplified the overall operational testing process. The solution easily replicated reports such as mance, and inspire stakeholder confidence Program Progress and Deficiency Status that were popularly-used but manually created in Excel previ- ously. Standard Internal Controls and Processes that enable setting up clear roles and accountabilities for internal controls, including responsibility for the defining, “We continue to be impressed with the richness of MetricStream’s SOX solution and their documenting, testing, and monitoring of controls and the remediating of problems ability to help deploy the solution in such a short timeframe. It speaks volumes about the configurability and richness of their solution.” says Chief Information Officer. Ability to configure off-the-shelf modules to adapt to best practices and incorporate specific business processes followed in the company Establishing SCAR and CAPA: The MetricStream solution provided a comprehensive SCAR and Powerful reporting for audit data analysis as well as CAPA solution that enabled the company to streamline quality management processes across their risk reporting supply chain. Based on the industry standard 8D methodology, the solution supported identification, evaluation, segregation and disposition of non-conforming material as well as case investigation, Low Total Cost of Ownership tracking, and remediation. Leveraging Compliance Online: The organization leveraged the tremendous value offered by the Met- ricStream’s ComplianceOnline.com. The company was able to use the portal to effectively implement and adopt compliance programs through online training, alerts, vertical search, discussion forums, and best practices library services. As the CIO further states, “The flexibility and richness of the MetricStream solution including integration with ComplianceOnline were the key reasons for choosing MetricStream. We are happy with our selection and initial results.” For more information, visit www.metricstream.com Copyright 2011. All Rights Reserved.