Intermediate
SOX risk-control matrix (RCM) generator for a process
Creates a SOX RCM with risks, controls, evidence, and testing attributes. Useful for building or refreshing SOX documentation efficiently.
Generate a SOX RCM for the {process_name} process.
Inputs:
- Process description: {process_description}
- Key risks: {key_risks}
- Control activities (existing/proposed): {control_activities}
- Systems and reports: {systems_reports}
- Frequency and owners: {frequency_owners}
Output:
1) RCM table: Risk, Control, Control type (prevent/detect), Frequency, Owner, Evidence, Key report dependencies, COSO component.
2) Testing attributes and suggested sample size by frequency.
3) Gaps and recommended new controls.
4) Change log for updates since last year.
Make it easy to paste into a SOX tool.Related Prompts
Compliance & Regulatory
Advanced10-Q MD&A draft from variance drivers (management-ready)
Drafts an MD&A section based on provided financial changes and drivers, with structured language and risk-aware tone. Useful for SEC reporting teams accelerating first drafts.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
2
Compliance & Regulatory
Intermediate10-K footnote checklist mapped to owners and source systems
Creates a 10-K footnote checklist with owners, data sources, and validation checks. Useful for planning the annual reporting process and avoiding last-minute gaps.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
2
Compliance & Regulatory
AdvancedSOX scoping memo: in-scope locations, systems, and accounts
Drafts a scoping memo for SOX including in-scope entities, systems, accounts, and rationale. Useful for annual SOX planning and auditor alignment.
GPT-5.2 Thinking; GPT-4.1; o3-mini
0
0
0