XML Feed

Sarbanes Oxley Compliance

Sarbanes Oxley News

05/09/2008
Out of the Sarbanes-Oxley Loop: Conspiracy or Conflict?
 John Bace VP and Research Director Why are CIOs being relegated to strictly tactical roles -- if not completely left out of the loop -- regarding Sarbanes-Oxley compliance efforts at many companies? This magazine article suggests it's a form o...
more info  

05/09/2008
SEC Investigates Quovadx , Auditors
 John Bace VP and Research Director This article from the Rocky Mountain News may be a bit lengthy but it's definitely worth a read. It covers two hot topics - Sarbanes-Oxley and sourcing. I wouldn't be surprised if Quovadx is one of the first ...
more info  

05/09/2008
Sarbanes-Oxley and Sales
 Dale Hagemeyer Research Director When you think of Sarbanes-Oxley (SOX) what comes to mind? Executives being scrutinized for not paying attention to business practices? Finance folk cooking the books? Time to start thinking about it in a whole...
more info  

05/09/2008
Getting to the Root of the Problem
 French Caldwell Vice President, Gartner Research First of all, let me address my colleague Debra Logan's concern that political differences are contributing to a slowdown in foreign listings on the New York Stock Exchange: Absent government sa...
more info  

Sarbanes Oxley Resource
Compliance Kit

The SOX kit contains all of the tools that are need to comply with the Sarbanes-Oxley legislation.  This tool kit has been used successfully by over 500 publicly traded companies.

 

Sarbanes-Oxley Section 404 requires that:

  • Enterprises have an enterprise wide security policy;

  • Enterprises have enterprise wide classification of data for security, risk, and business impact;

  • Enterprises have security related standards and procedures;

  • Enterprises have formal security based documentation, auditing, and testing in place;

  • Enterprise enforce separation of duties; and

  • Enterprises have policies and procedures in place for Change Management, Help Desk, Service Requests, and changes to applications, policies, and procedures.

To meet these needs the Sarbanes Oxley Kit, which comes in four editions (Standard, Silver, Gold, and Platinum) contains:

  • Security Policies (all editions);

  • Threat & Vulnerability Assessment Tool (all editions);

  • Business & IT Impact Questionnaire Risk Assessment Tool (all editions);

  • Safety Program Template (all editions);

  • Disaster Recovery Template (all editions);

  • Outsourcing guide update to reflect what you vendors need to do (all editions);

  • Software tool to monitor key data files (all editions);

  • Internet and IT Job Descriptions (Silver, Gold, and Platinum Editions) and;

  • IT Service Management Template (Platinum Edition).

Site Map

Disaster Recovery Plan TemplateIT Job Descriptions

© 2008 Janco Associates, Inc. - ALL RIGHTS RESERVED  --  Revised: 05/02/08.