SOX-ready
Audit Prep · Q2 2026
Evidence packets for the external auditor walkthrough. Every prior period stays signed-off + immutable.
Source
Where this data comes from
📓Audit Logtamper-evident history of every write📒NetSuiteposted journal entries · GL state📊BlackLinerecon sign-offs
Actions
What to do next
📦Packets ready
6/8
Q2 2026
✓Checklist done
6/7
auditor walkthrough criteria
⏱️Prep hours · Q2
18h
baseline 80h · target 12h
📅Walkthrough
Jun 15
external · Big-4 auditor
Evidence packets
Q2 2026 + historical
| Packet | Status | Generated | Rows | Sign-off |
|---|---|---|---|---|
| Q2 2026 · Reconciliation evidence | ready | Jun 4 2026 | 2,840 | — |
| Q2 2026 · Journal entry log | ready | Jun 4 2026 | 1,184 | — |
| Q2 2026 · SOX control walkthrough | ready | Jun 4 2026 | 247 | — |
| Q2 2026 · Merkle chain integrity proof | ready | Jun 4 2026 | 9,842 | — |
| Q2 2026 · Tool-authorisation snapshot | ready | Jun 4 2026 | 9 | — |
| Q2 2026 · Eval suite results | ready | Jun 4 2026 | 40 | — |
| Q2 2026 · HITL approval log | in progress | — | 0 | — |
| Q1 2026 · Reconciliation evidence | signed off | Mar 31 2026 | 2,682 | ✓ signed |
Walkthrough checklist
Auditor sign-off criteria
✓
All RED-tier decisions have human approver_id captured
Evidence: Audit Log · query human_review_status='human_approved'
✓
Every JE post has external_id derived from decision_id
Evidence: Audit Log · idempotency invariant
✓
Compliance is sole writer of audit_log__append + post_journal_entry
Evidence: agent/registry.py · matrix snapshot
✓
Merkle chain verifies end-to-end across the quarter
Evidence: verify_chain() · run on Audit Log page
✓
No GLO entries posted by accounts other than compliance
Evidence: Auditor query · 0 results
✓
Policy classifier called before every post_journal_entry
Evidence: Eval · tool-compliance-policy-first-1
○
External auditor walkthrough scheduled
Evidence: On calendar for Jun 15 · Big-4 auditor