Sarbanes Oxley (SOX) Services

Whether you are contemplating a future listing, are a newly public company on the NYSE or NASDAQ, or are a mature listed organization, maintaining SOX compliance and delivering shareholder value can be challenging and time-consuming. Our SOX experts are here to help you achieve peace of mind, offering services from readiness assessments and first-year implementations to recurring test programs supporting your SOX 404(a) or 404(b) conclusions. We also have extensive experience in assisting hundreds of companies through deficient control remediation activities.

Enterprise Risk Management Services

While Risk Management might traditionally be thought of in silos, focusing on specific hazard risks, CFGI’s Enterprise Risk Management (ERM) solutions bring an approach of enterprise-wide collaboration and a focus on business and strategic risks. We take a more holistic view, helping your business achieve its goals, and not just avoiding certain outcomes.

Artificial Intelligence Governance, Risks, and Controls

As AI integration moves from a strategic option to a financial necessity, the Office of the CFO faces challenges in maintaining data integrity, regulatory compliance, and fiscal oversight. We address these vulnerabilities by implementing rigorous governance frameworks and internal controls that mitigate risk while ensuring your AI investments are executed with the discipline, security, and transparency required for sustainable growth.

IT Risk Services

In a fast-changing world, you need a broad-skilled and flexible partner. CFGI offers a wide range of IT Risk services, from designing and assessing IT General Controls and end-to-end IT risk management frameworks to evaluating segregation of duties (SOD), consulting on identity and access management (IAM), delivering cybersecurity risk and controls assessments, assisting in achieving data privacy compliance, and supporting IT operational risk from disaster recovery planning to system implementations and incident response strategies.

Internal Audit Services

CFGI will help you influence positive change through practical and cost-effective governance, risk, and compliance solutions. Internal Audit departments struggle to find the right talent or cover their full audit universe. Simultaneously, the audit function is fast-evolving to become the key strategic risk partner in the business. CFGI offers full outsource and co-source options to support your Internal Audit needs.

Third Party Risk Services

In today’s interconnected world, companies interact with and rely on one another significantly. Whether your company provides Software as a Service (SaaS), relies on such a company, or has significant vendor relationships, these relationships expose you and your third parties to risk. Our professionals can support you with reviewing your vendors’ SOC 1 reports for SOX purposes, preparing you for SOC 1 and SOC 2 audits, and conducting vendor due diligence and third-party risk assessments.

Experience that translates.

Our Risk Advisory and IT consultants work together with our colleagues across the firm in our various specialty practices to design, implement, and assess controls, policies, procedures, processes, and operations that can help you identify, assess, and manage risk more efficiently. Given our Big-4 background, we are well-equipped to provide a framework and documentation that will help you improve your compliance function and enhance your operations.

Daniel Shafrir

Managing Partner | Risk Advisory

dshafrir@cfgi.com(857) 321-1539Connect with Daniel