Sarbanes-Oxley Act

MUST READ SOX, security standards and building a compliance framework COMPLIANCE SCHOOL - This article provides a brief introduction to dealing with the challenges that face IT security in complying with SOX.

EXPERT TECHNICAL ADVICE: 1 - 3 of 33

SARBANES-OXLEY ACT EXPERTS
			Mike Rothman President and Principal Analyst ASK A QUESTION

	What types of software can help a company perform a security risk assessment? 10 Oct 2007 EXPERT ANSWER - Security management expert Mike Rothman unveils what kind of software is on the market to help assist a company in the risk assessment process.

	COSO and COBIT: The value of compliance frameworks for SOX 25 Jul 2007 TIP - In this tip, contributor Mike Rothman examines these compliance paradigms and offers insights on how they can help organizations and auditors speak the same language.

	How should termination procedures address a user's multiple roles? 17 Apr 2007 EXPERT ANSWER - In this SearchSecurity.com Q&A, expert Joel Dubin explains how the right access management tools can eliminate all traces of a terminated employee.

	VIEW ALL EXPERT TECHNICAL ADVICE ON SARBANES-OXLEY ACT

NEWS: 1 - 3 of 43

	RSA attendees see data classification, rights management projects stumble SearchSecurity.com | 10 Apr 2008 INTERVIEW - Companies are starting data classification projects to minimize data leakage, but it's hard to find successful projects. In this Q&A an expert shares some effective strategies.

	Hannaford breach illustrates dangerous compliance mentality SearchSecurity.com | 04.02.2008 OPINION - As Executive Editor Dennis Fisher explains, the Hannaford supermarket breach illustrates how too much emphasis on compliance puts critical data at risk.

	PCI compliance drives identity management spending, says IBM's GRC chief SearchSecurity.com | 19 Feb 2008 INTERVIEW - Only a year after Consul Risk Management was acquired by IBM, Consul's chief technology officer now heads Big Blue's governance risk and compliance strategy.

	VIEW ALL NEWS ON SARBANES-OXLEY ACT

REFERENCE & LEARNING: 1 - 3 of 16

	Information security book excerpts and reviews SearchSecurity.com | 20 Sep 2006 INFORMATION SECURITY BOOKSHELF - Visit the Information Security Bookshelf for book reviews and free chapter downloads.

	Quiz: Ensuring compliance across the extended enterprise SearchSecurity.com | 21 Jun 2007 QUIZ - A five-question multiple-choice quiz to test your understanding of the content presented by expert Richard Mackey in this lesson of SearchSecurity.com's Compliance School.

	Security rules to live by: Compliance with laws and regulations Published by Information Shield, Inc. | 01 Nov 2006 BOOK CHAPTER - An excerpt of Chapter 3: Security Rules to Live By, from David J. Lineman's Information Protection Made Easy.

	VIEW ALL REFERENCE & LEARNING ON SARBANES-OXLEY ACT

MAGAZINE CONTENT (free subscription required): 1 - 3 of 4

	Balancing Act Information Security Magazine | 01 Mar 2007 FEATURES - A secure environment, or a satisfied auditor--which is your priority?

	Editor's Desk Information Security Magazine | 01 Nov 2006 COLUMNS - Walk the Line

	Compliance Guide for Managers Information Security Magazine | 01 Mar 2006 FEATURES - SPECIAL How to influence the C-suite, save your company money, please auditors and secure your data.

	VIEW ALL MAGAZINE CONTENT ON SARBANES-OXLEY ACT

WEBCASTS: 1 - 3 of 5

	Ongoing SOX compliance: A security team's to-do list - Expert Webcast VIEW WEBCAST PREMIERED:   01 FEB 2006, 09:00 EST (14:00, GMT) SUMMARY:   This webcast will help infosec teams understand the regulation's evolving expectations and arm them with actionable items to ensure that their businesses remain continuously compliant.

	How-to guide: SOX, ID management and access control - Expert Webcast VIEW WEBCAST PREMIERED:   01 FEB 2006, 09:00 EST (14:00, GMT) SUMMARY:   In 15 minutes learn the importance of provisioning in SOX compliance.

	Missing Controls for Sarbanes-Oxley - Vendor Webcast VIEW WEBCAST PREMIERED:   18 JAN 2005, 12:00 EST (17:00, GMT) SUMMARY:   Learn how Enterprise Rights Management solutions help control information used in the financial reporting process, especially spreadsheets and email, as required by the Sarbanes-Oxley regulation.

	VIEW ALL WEBCASTS ON SARBANES-OXLEY ACT

WHITE PAPERS

	SAP GRC Access Control Solution Published by: HCL Technologies Ltd. | 09 May 2008 WHITE PAPER - This white paper pertains to one of the most accountable control automation tool: SAP Access Control and details its implementation methodology.

	Expert eGuide: Best Practices for Integrated Threat Management Published by: eEye Digital Security | 01 May 2008 EDITORIAL RESOURCE GUIDE - Check out this expert eGuide and discover how your company can benefit from an integrated threat management solution, which can result in reduced costs and better compliance.

	SANS: Database Activity Monitoring: Continuous, Real-Time Data Security Published by: Guardium | 01 May 2008 WHITE PAPER - This white paper describes how database activity monitoring (DAM) records activity from all types of database management systems while providing real-time security for preventing unauthorized access by attackers and insiders.

	VIEW ALL WHITE PAPERS IN THIS TOPIC

	SEE ALSO - Topics Related to Sarbanes-Oxley Act:  PCI Data Security Standard, FFIEC, Gramm-Leach-Bliley Act (GLBA), HIPAA, Data Security Breach Laws and Notification, Data Privacy, Security Audit, FISMA