.png?fit=max&auto=format&n=tsMQJyneJ1xquFUo&q=85&s=4d401cc03b547d99b6f75a6bd170c334){kind=spacer}
Implement the COSO Internal Control–Integrated Framework.The Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control–Integrated Framework is a widely used model for designing, implementing, and evaluating internal control. It is the foundation many organizations use to support financial reporting and SOX compliance.
COSO is frequently used as the control framework underpinning US SOX compliance and broader enterprise risk management.
Who needs COSO?
Public companies
Organizations using COSO as the basis for internal control over financial reporting.
Finance and audit teams
Teams designing and evaluating internal control environments.
Key components
Control environment
The foundation — integrity, ethical values, and governance structures.
Risk assessment
Identify and analyze risks to achieving objectives.
Control activities
Policies and procedures that mitigate risks.
Information & communication
Capture and share relevant information across the organization.
Monitoring activities
Ongoing and separate evaluations of control effectiveness.
How DSALTA helps with COSO
Activate COSO
Select COSO from the Frameworks page. DSALTA maps the five components and principles to controls.
Frequently asked questions
How does COSO relate to SOX?
How does COSO relate to SOX?
COSO is the most commonly used framework for evaluating internal control over financial reporting, which SOX requires public companies to assess.
What are the 17 principles?
What are the 17 principles?
COSO defines 17 principles spread across its five components, each representing a fundamental concept of effective internal control.