Manufacture Enterprise Information System Control And Management Base On Sox404

Along with the increase of corporate information systems dependent on the extent in information systems from the enterprise itself, the risk is gradually increasing, and the information systems , the control of the department and management was gradually attention by every enterprises. especially in recent years, there are many cases that a number of listed companies insolvency because of false financial. the control and management of information systems to be a law-based compliance road.The research aim and the main content of this article is that , in the background of manufacturing enterprises, how Enterprise Information Systems follow SOX404 bill, as well as to follow the bill at the same time, corporate information systems department conducted its own analysis and risk prevention, to control and manage the enterprise information system.In this article, we expound it according to the following aspects,At the aspect of the project research in the background, this article analysis that how enterprise information department comply with the Bill of SOX404 ed, and dissect the SOX bill content according to the definition standard of PCAOB. At the same time, we make an in-depth analysis for the decomposed content according to the IT management processes of COBIT. this article integrate actual situation of a company at the basic of it and bring up a series of information control questions of this company, and to put forward solutions direct these issues.At the aspect of the information systems in the background, this article analysis the characteristics of general information systems first, and then make an in-depth and detail research for the advantages and disadvantages of an enterprise information system.At the aspect that information systems department follow SOX404 compliance, at first, this article research the framework that general enterprises follow to SOX404. and then from the actual case of this enterprises ,direct to various stages of the process that the enterprises conform SOX404 bill; including confirm the range of assessment; identify existing business processes; carry out the risk assessment in determining scope; design and implementate control to reduce the logo risk; compile the control documents; carry out the compliance and substantive test which based on the assessment range; adopt investigation of the audited company; continuous improvement and so on, this article make a full verification that combines the actual case.