Framework hub
SOX ITGC
SEC / PCAOB
Information Technology General Controls under Sarbanes-Oxley supporting integrity of financial reporting.
HLD Group maintains policies and controls mapped to this framework as part of our security and compliance programme. This hub describes programme alignment — not a third-party certification or attestation unless separately agreed in your contract.
Programme focus areas
- Change management
- Logical access
- IT operations
Policies meeting this framework
The following published policies and programme documents are mapped to SOX ITGC. Status: published and under periodic review.
- Change management policyPublished
Managing changes to systems, infrastructure, and applications.
v2.2 · review every 365 days
- Access control policyPublished
Granting, reviewing, and revoking access to systems and data.
v2.0 · review every 180 days
- Risk management policyPublished
Identifying, assessing, and treating organizational risks.
v1.5 · review every 365 days
- Whistleblower & speak-upPublished
Raising concerns about misconduct in good faith.
v1.1 · review every 365 days
Assurance note
Programme alignment means HLD maintains controls, policies, and monitoring mapped to SOX ITGC requirements appropriate to our services and risk profile. It does not by itself constitute certification, authorization, or a SOC/ISO audit report. Customers requiring formal attestations should contact [email protected].