Baseline Controls in Small Entities - GRC Playbook

The Baseline Controls in Small Entities Playbook (based on the AICPA’s “Examples of Controls in Small Entities”) provides a set of the most common basic ICFR controls intended to help management (including process owners), boards of directors and their audit committees, as well as internal and external auditors, to document, assess, test and report on the effectiveness of key controls on which management intends to place reliance to prevent and detect material misstatement and fraud in accordance with relevant corporate and regulatory requirements.

Download the Playbook

Unlock access to a wealth of information.

What is in the Baseline Controls in Small Entities Playbook?

This Playbook of baseline controls address the following material classes of transaction, account balances or disclosures:

Financial Closing and Reporting
Cash Management
Accounts Receivable
Inventory
Property
Accounts Payable
Sales
and
Other Expenses

Policy Document Template

These templates are designed to be a starting point for your clients, which can be tailored for your client's specific organizational needs.

Overview Flow Charts

A diagrammatic representation of the flow of assessment activities within your playbook.

Instructions

Our instructions for use. These are the same for all our playbooks, once you know how to use one, you can use them all.

Tutorial

A PowerPoint tutorial on the specific playbook, covering the most important aspects of this area of assessment.

Baseline Controls in Small Entities

Entity Level Controls (Tone-at-the-Top)

Financial Statement Close and Reporting

General Control Activities over Technology (ITGC)

Information Technology Application Controls (ITAC)

Systems Development Life Cycle (SDLC)

Based on Authoritative Sources