Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Sarbanes Oxley for IT Security?
Mark Rasch, 2005-05-02

Sarbanes Oxley seems wholly focused on the accuracy of a company's financial records and controls around these records, so where does IT security come into the picture?

Submit Comment Mode:
Name:
Subject:
Message:
 
  Enter the characters that appear above
 
Re: Sarbanes Oxley for IT Security? 2005-07-27
Anonymous
As an IT auditor, I can say that SOX is just wrapping more duct tape on a fundamentally broken system. The bottom line is that audit firms get paid by the auditee, so there will always be conflict of interest. Secondly, internal controls are designed to control the underlings, not the executives. As...

[ more ]  




 

Privacy Statement
Copyright 2008, SecurityFocus