SOX Scorecard 2
This 20-question scorecard, aligned with the sections of the COBIT standard, is designed to help an organization gauge its ability to meet COBIT control objectives that are important in complying with Sarbanes-Oxley Section 404. Each question has four possible responses. If your organization can answer c or d to a question, it's likely that you have adequate controls in that area. However, if you choose a. or b., you should consult the COBIT standard and ISO17799 for recommendations for implementation of controls to improve your organization's compliance.
90 or higher = outstanding
70 or higher = acceptable
Below 70 = there are some areas that your organization needs to work on
A negative 8 score on any question is a critical failure and needs to be addressed before your next audit.