Ansel and Myself were fortunate enough to be invited into a meeting of minds in internal controls at BDO Headquarters in London.  

The themes were very much around Internal Controls, the extent to which the Internal Controls can be automated and the proportion of those automated controls that are Access Control policies.  

Our friends and colleagues at SafePaaS were co-hosting with BDO.  SafePaaS is a Policy-based Access Governance platform and has lots to say on this topic.  

We saw lots of customers that are still dealing with processes and reporting from Sarbanes - Oxley.  The whole area of Internal Controls are topical in the UK because of changes in the UK Corporate Governance Code.  This has been termed UK SOX.  There seems to be much more that is open to interpretation in the new Corporate Governance Code, with the goal of making it adaptable to different sizes and maturities of companies.   The full text of the UK Corporate Governance Code 2024 can be found here. 

UK Corporate Governance Code (frc.org.uk) 

SSTC has deep expertise in Corporate Governance Processes with particular expertise in how the automated controls within Enterprise Systems can be used to make outcomes more certain and testing of those controls more efficient.   If we can be of assistance to you as you prepare for the changes in the UK Corporate Governance Code please reach out to us at Info@softwareStrategyConsulting.co.uk or fill out the contact request form above.