Skip to main content
ResiPlan
SOX 404 · CIF · COSO · J-SOX

SOX + CIF + COSO: 1 platform, 7 frameworks

French CIF (Code L.225-37), SOX 302/404 (US-listed), COSO 2013, J-SOX, ACPR, AMF. Full matrix, quarterly testing, CEO/CFO sign-off.

Why a dedicated engine

Internal financial control must be proven: a tested matrix, traceable sign-off, remediated deficiencies.

Certification leaves no room for guesswork

SOX 404 and CIF require a tested, signed control matrix — an Excel sheet won't survive the inspection.

Quarterly testing piles up

Design, operating effectiveness, sampling, deficiencies: without tooling, the campaign becomes unmanageable.

CEO/CFO sign-off gets lost

Cascading sub-certifications and the materiality threshold are hard to run over email.

AuditBoard costs 10× more

Dedicated SOX platforms charge a premium for what ResiPlan folds into the rest of your GRC.

6 capabilities

7 frameworks in one engine

SOX 302, SOX 404, CIF (French Code de commerce L.225-37), COSO 2013, J-SOX, ACPR Arrêté, AMF Référence. Switch framework per fiscal year.

Control matrix × processes

O2C, P2P, R2R, H2R, Treasury, Tax, ITGC, entity-level. Preventive / detective / corrective. Manual / automated / IT-dependent. Key controls flagged.

Test of design + operating effectiveness

Quarterly testing with sample size, method (inquiry/observation/inspection/reperformance/walkthrough), deficiency level (material weakness, significant deficiency, simple deficiency).

CEO + CFO sign-off workflow

Quarterly sub-certifications cascade, SOX 302 CEO/CFO sign-off with materiality threshold. Certified only when both sign.

COSO 2013 components mapping

Control environment, risk assessment, control activities, information & comms, monitoring — auto-mapped for certification readiness.

Remediation tracking

Each failed test generates a remediation plan + due date + owner. Dashboard shows material weaknesses unresolved.

How it works

  1. 1

    Scope

    Pick the framework for the year (SOX, CIF, COSO, J-SOX…) and build the control × process matrix.

  2. 2

    Test

    Plan the quarterly testing: sample size, method, deficiency level.

  3. 3

    Certify

    Cascade of sub-certifications and CEO/CFO sign-off with a materiality threshold.

  4. 4

    Remediate

    Every failed test spawns a tracked action through to closure, with a material-weakness dashboard.

Say goodbye to AuditBoard for 10× less

SOX + CIF — Financial Controls | ResiPlan