Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Sarbanes Oxley for IT Security?
Mark Rasch, 2005-05-02

Sarbanes Oxley seems wholly focused on the accuracy of a company's financial records and controls around these records, so where does IT security come into the picture?

Comments Mode:
OATBNL ? 2005-05-03
Umesh Chavan (3 replies)
I see the acronym OATBNL clubbed with standards ? What is it ?Any pointers ? Google does not reveal any information on this.

Regards,
Umesh Chavan...

[ more ]  [ reply ]
OATBNL ? 2005-05-05
Anonymous
Other Acronyms To Be Named Later...

[ more ]  [ reply ]
OATBNL ? 2005-05-06
Anonymous
I thought you were kidding........

[ more ]  [ reply ]
OATBNL = OATBNL 2005-09-28
Anonymous
Other Acronyms To Be Named Later = OATBNL
Regards;
M.C. UVEY - Istanbul/TURKEY...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-03
Mestafio
Great article. Without a doubt one of the more realistic views of the implications of SOX on Security professionals and the businesses they serve I have seen.
That Security is core to business and not just to sooth the dreams of business owners afraid of government generated industry buzzwords is ...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-04
TA
Excellent article, Mark. Thank you for taking the time to write on this topic. ...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? (any good links, papers...?) 2005-05-06
Anonymous (2 replies)
Hello

Nice article on sox. In a few weeks/months I'm going to write a diploma thesis about the impact of sox on a company's IT.

If someone has a good recommendation, link or paper (IT related), whatever I would greatly appreciate it. (Not that I'm too lazy to do it myself but one doesn't have ...

[ more ]  [ reply ]
Re: Sarbanes Oxley for IT Security? (any good links, papers...?) 2006-04-07
Anonymous
How did your thesis go ? where can we get a copy of it...

[ more ]  [ reply ]
Re: Sarbanes Oxley for IT Security? (any good links, papers...?) 2007-07-18
Anonymous
hey, did you write that diploma thesis about the impact of sox on a company's IT. i'm looking for some more references. - jdubb3000@yahoo.com...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-07
Anonymous
Great Article , I also tried to go through SOX and find the IT Security references and could not. Thank you....

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-09
Michael Britt
As usual, a good article. Realistic and devoid of the hype usually associated with SOX.

A whole industry (and I'm sure whole security departments within companies) has arisen from the SOX-compliance Booger Man.

Accompanying this industry has been the clubbing and hype to get people to buy in t...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-10
Anonymous
Impressed with this article as here in Australia more and more vendors are talking about SOX compliance as a 'must do' - more fat free talk.

This artilce has boiled down a very complex topic into easy to understand and actionable information.

Thank you....

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-05-12
Jayaraj (1 replies)
Mark,

Excellent and realistic article.As you mentioned,systems can be made fraud resistant but not completely "fool proof".

Thanks ...

[ more ]  [ reply ]
Re: Sarbanes Oxley for IT Security? 2005-07-27
Anonymous
As an IT auditor, I can say that SOX is just wrapping more duct tape on a fundamentally broken system. The bottom line is that audit firms get paid by the auditee, so there will always be conflict of interest. Secondly, internal controls are designed to control the underlings, not the executives. As...

[ more ]  [ reply ]
Sarbanes Oxley for IT Security? 2005-10-07
Sorag
Great article....
but with the increased IT security it would be much easier to comply to these types of articles.....

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus