These demo videos help you to see the output from SOD Check™ and how it helps with financial audit efficiency.
- 1
SOD Check™ follows the same methodology that a Big 4 firm uses internally to manage their SOD audit risks (and what they do for Consulting).
- 2
SOD Check™ has required data completeness & accuracy validations with clear tie outs for auditors to verify.
- 3
Other tools don’t come with pre-formatted completeness & accuracy reports required; audit teams must do that separately.
- 4
Big 4 firms recommend companies use an SOD tool for more efficient audits to avoid fee overrun and save time.
- 5
SOD Check™ isn’t integrated into NetSuite so it doesn’t require an extra NetSuite license to use. The user just sends in two standard reports and receives the diagnostic output in spreadsheet files.
- 6
For the skeptic who wonders if the tool works, it went through a vetting process by Big 4 partner-level experts from various disciplines (financial audit, IT audit, internal audit, and IT tech assurance)… and passed (with a huge sigh of relief after being grilled by this sharp group).
- 7
No installation or implementation is required.
- 8
No knowledge of segregation of duties rules needed (rules are built in).
For CSuite –
Maximize Your Oversight: Strategic Insights from NetSuite SOD Check part 1:
CFO, CIO slide presentation recaps the current diagnostics and includes historical results for each of the nine metrics when you continue using SOD Check regularly
For Reviewers –
Explore the Executive Summary Map: NetSuite SOD Check Insights Part 2:
for controllers, directors, and managers to validate the diagnostic results. The file has supporting details for each metric including the evidence-based proof-of-work to the supporting diagnostic.
For System Admins –
Intro to SOD Check: NetSuite’s Diagnostics Explained Part 3:
for system owners and administrators, get acquainted with the essentials of NetSuite’s SOD diagnostics
For Auditors –
SOD Check Insights: NetSuite Diagnostics Exhibits A-K Completeness and Accuracy Part 4:
All the exhibits that external auditors need for completeness, accuracy, and integrity checks to pass a quality inspection
SOD Check is a diagnostic tool for assessing segregation of duties within your systems. It does not integrate directly with NetSuite; instead, your system administrator will run two standard NetSuite reports following step-by-step instructions provided. These reports are then sent to SOD Check, where a dedicated team processes them. The results are delivered in spreadsheet format. This ensures your NetSuite system remains secure under your system administrator’s control.
SOD Check specializes as a detective control tool, designed to identify segregation of duties (SoD) conflicts after they occur. Once roles are assigned within the system, your system administrator will generate and forward specific user reports to SOD Check for analysis. This process helps pinpoint existing SoD conflicts, enabling your team to take corrective action.
SOD Check acts like an annual or semi-annual doctor’s check-up for your system user roles, ideal for smaller public and mid-size private companies with limited staff and resources. Unlike Fast Path and StrongPoint, which are like having a full-time doctor onsite and require more money and effort, SOD Check offers a simpler, budget-friendly way to keep track of user roles without extra hassle. Fast Path and StrongPoint require a system implementation and annual license. SOD Check is pay-per-diagnostic.
SOD Check does not require a SOC1 Type2 report because the output includes manually performed alternative procedures that aligns with AICPA and PCAOB auditing standards on audit evidence. The process of matching data inputs to outputs meets these standards by ensuring the completeness, accuracy, and integrity of audit information. For external auditors, the Premium package includes detailed exhibits that serve as proof-of-work. This approach supports the auditing principles by offering verifiable evidence that the user roles and permissions analysis is rigorous and reliable, making it a valuable tool in the audit process.
SOD Check is designed for ease of use, eliminating the need for software installation or training on a new tool. Instead, you’ll receive detailed diagnostic reports directly, including spreadsheets and a summary slide, prepared by a dedicated team. This approach ensures you can focus on analysis and decision-making without worrying about technical complexities.
The comparison report in SOD Check provides a side-by-side analysis of your most recent diagnostic results with those from your previous session. This feature is available to repeat users, offering valuable insights into changes and improvements over time in your system’s segregation of duties controls.
SOD Check includes a detailed report, referred to as Exhibit B, which outlines all the roles within your system along with the specific access or permissions each role possesses. This ensures a comprehensive view of role-based access control within your organization.
SOD Check is typically required annually for financial audit purposes, with most companies opting to run it semi-annually. The first session is usually in April or May, aiming to identify issues. Companies use the next six months to fix priority issues. The second diagnostic in November or December verifies the resolution of high-priority concerns. For companies that have recently implemented their system, an initial SOD Check is recommended to ensure key roles are correctly established, serving as a baseline for future diagnostics.
SOD Check is versatile and supports segregation of duties analysis across a broad range of systems. Currently, it can be applied to ADP, Coupa, Equity Edge Online, NetSuite, Salesforce.com (SFDC), Shareworks, Tipalti, UKG Ultipro, WorkDay, and Zuora. This wide compatibility makes it a flexible tool for companies utilizing any of these platforms for their operations.
The Pro package offers basic diagnostics and their comparisons to the previous diagnostic, while the Premium package builds on this by including executive summaries of trends and detailed exhibits for data validation, crucial for external auditors. These exhibits provide the necessary proof-of-work for data completeness, accuracy, and integrity, aligning with what external auditors require to sign off on the financial statements.
The Basic package is tailored for new system implementations, focusing on initial proper segregation of duties set up for key roles and establishing a baseline. The Pro package, ideal for ongoing use, advances this by providing diagnostic analyses and comparing them to past results, enabling users to monitor changes and improvements in their system’s segregation of duties controls over time. This structure allows companies to choose the level of service that best matches their stage of system maturity and their need for ongoing insights into their system environment.
The Basic package is tailored for new system implementations, focusing on initial proper segregation of duties set up for key roles and establishing a baseline. The Premium package builds on this by including executive summaries of trends and detailed exhibits for data validation, crucial for external auditors. These exhibits provide the necessary proof-of-work for data completeness, accuracy, and integrity, aligning with what external auditors require to sign off on the financial statements.