Skill

netsuite-audit-controls-sox-skill

Audits NetSuite financial controls for SOX compliance: SoD analysis, posting periods, revenue recognition, approval workflows, audit trails.

security

npx claudepluginhub raishin/vanguard-frontier-agentic --plugin vanguard-frontier-agentic

Popularity

Stars

Forks

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/vanguard-frontier-agentic:netsuite-audit-controls-sox-skill

User invocable

Model invocable

Inline context

Default effort

Tool Access

This skill is limited to the following tools:

ReadGrepGlob

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Validates that NetSuite financial control configurations meet SOX audit requirements: SoD conflicts across AP/AR/GL roles, posting period lock-down rules, multi-step journal entry approval chains, ASC 606 / VSOE revenue recognition setup, and audit trail integrity for all financial transactions. T0 static review — no NetSuite account connection required; output is a draft for human review.

Supporting Files

metadata.jsonreferences/least-privilege.mdreferences/official-sources.mdreferences/release-drift.mdreferences/safety-checklist.mdreferences/sox-control-map.md

SKILL.md

87 lines · ~1.8k tokens

Similar Skills

netsuite-financial-foundations-skill

Reviews NetSuite AP/AR configuration, chart of accounts, accounting preferences, and period-end reconciliation against Financial User and Accounting Professional certification standards. Static, no live connection required.

6 files3 tools

vanguard-frontier-agentic

sox-testing

12.3k

Generates SOX 404 sample selections, testing workpapers, and control assessments for financial controls including revenue, P2P, ITGC, and close processes.

finance

netsuite-sdf-roles-and-permissions

284

Resolves NetSuite SDF permission configurations: customrole XML, permkey/permlevel values, script deployment permissions, and least-privilege role design. Validates against bundled reference data.

2 files

netsuite-suitecloud

Stats

LanguagePython

Stars16

Forks1

MaintenanceExcellent

Last CommitJun 11, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

NetSuite Audit Controls SOX Skill

Purpose

When This Skill Owns the Task

User submits role permission exports or approval workflow definitions for SOX control review
Internal audit team needs SoD conflict analysis across AP, AR, GL, and payroll roles
External auditor requests SOX walkthrough documentation for NetSuite financial controls
CoE architect needs to validate posting period lock procedures and close-calendar coverage
Finance team needs revenue recognition schedule reviewed against ASC 606 / VSOE requirements

Recommended Workflow

Step 1 — Collect sanitized inputs: request role permission exports, approval workflow definitions, posting period status, revenue recognition configuration, and audit trail coverage table
Step 2 — SoD analysis: identify permission overlaps across AP entry, AP approval, AR entry, AR approval, GL posting, and cash management functions; rate each conflict
Step 3 — Posting period review: verify lock/unlock sequence, confirm who holds Manage Accounting Periods, check that prior periods are locked before current period close
Step 4 — Approval workflow audit: validate multi-step approval chains exist for journal entries, vendor bills, purchase orders, and expense reports; check for approval bypass conditions
Step 5 — Revenue recognition review: confirm recognition method aligns to ASC 606 or VSOE requirements, deferral account mapping is correct, and schedule release is approval-gated
Step 6 — Audit trail completeness: verify system notes are enabled for all financial transaction types; flag any transaction type missing field-history tracking
Step 7 — Emit SOX findings report: rated Critical / High / Medium / Low with control deficiency categorization (deficiency / significant deficiency / material weakness) and safe-next-actions

Evidence Hierarchy

LIVE_EVIDENCE > REPOSITORY_EVIDENCE > USER_PROVIDED > OFFICIAL_DOCUMENTATION > INFERENCE > UNVERIFIED > BLOCKED

Safety Checklist

No live NetSuite connection — all inputs are sanitized configuration excerpts
No credentials, tokens, consumer keys, or client secrets in submitted inputs
Role recommendations never include the Administrator role
2FA designation verified for roles with Manage Accounting Periods or Access Token Management permissions
All SoD findings cite specific permission overlaps from submitted role exports, not from inference alone
Approval workflow bypass conditions (e.g., auto-approve for low amounts) are flagged and rated

Rules — Hard-Stop Constraints

Static review only; never connect to a live NetSuite account or invoke APIs/SuiteScript/SDF.
Never request or accept credentials, tokens, or secrets.
Never depend on the Administrator role; recommend least-privilege custom roles (note 2FA).
Prefer OAuth 2.0 (REST/RESTlets/SuiteAnalytics Connect) over SOAP; treat SOAP as a migration risk.
Never claim a Coming-Soon certification is available.

Refusal Triggers

Input contains credentials, tokens, consumer keys, client secrets, or any authentication material — stop and instruct sanitization
Request involves mutating, deploying, activating, or unlocking any NetSuite configuration in a live or production account — route to netsuite-live-org-mutation-guard-agent
Request asks the agent to log in, connect, or authenticate to any NetSuite environment
Claim that the Administrator role should be used for integration, review, or period-close operations — refuse and cite least-privilege principle (evidence-matrix rows 7a, 7b)
Request to assert status of the AI Specialist or AI Professional certifications as available — those are coming soon; only AI Foundations Associate (N16765GC10) is available (evidence-matrix row 1b)

T0 Contract

No account connection, no OAuth, no secrets. Output is draft review text for a human owner.

Security Notes

Static review only — works exclusively from sanitized configuration excerpts; never requests or accepts credentials, tokens, session IDs, consumer keys, or any authentication material. Does not connect to, query, or mutate any NetSuite account in any environment. Role recommendations explicitly exclude the Administrator role. 2FA designation requirements are surfaced for roles with Manage Accounting Periods or sensitive access-management permissions. SOX evidence artifacts are generated as draft documents for human reviewer sign-off only.

Reference File Index

official-sources.md — Oracle NetSuite certification and financial governance help URLs verified in evidence-matrix
safety-checklist.md — Pre-submission sanitization checklist for role exports and financial configuration excerpts
least-privilege.md — Custom role construction guidance for SOX reviewer posture derived from Accountant standard role
release-drift.md — NetSuite release cadence notes for posting period engine and approval workflow changes
sox-control-map.md — Mapping of SOX Section 302/404 control objectives to NetSuite configuration review areas

netsuite-audit-controls-sox-skill

Popularity

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

netsuite-audit-controls-sox-skill

Popularity

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

NetSuite Audit Controls SOX Skill

Purpose

When This Skill Owns the Task

Recommended Workflow

Evidence Hierarchy

Safety Checklist

Rules — Hard-Stop Constraints

Refusal Triggers

T0 Contract

Security Notes

Reference File Index

Similar Skills

Help us improve

NetSuite Audit Controls SOX Skill

Purpose

When This Skill Owns the Task

Recommended Workflow

Evidence Hierarchy

Safety Checklist

Rules — Hard-Stop Constraints

Refusal Triggers

T0 Contract

Security Notes

Reference File Index