Resources for Sarbanes-Oxley (SOX)

CSI Survey 2007, Part 3: Tech and Tribulations

www.enterpriseitplanet.com

When it comes to employing security technologies, firewalls and antivirus are the main variants that everyone seems to use. The key, of course, is to ensure that these are configured properly and updated regularly to account for new attack types.

VPNs and spyware detection software come in at a distant third and fourth (VPNs were added to the list just this year). Most of the technologies were at the same usage levels as last year with one glaring exception: server-based access control lists dropped from 70% to 56%. This may be due to a tendency to rely on single-sign-on (SSO) methodologies as well as other forms of authentication and access. This likely reflects the evolution in how we communicate and network between organizations. And since we're using all this technology, we need to verify that it's being used accurately.

Companies are investing in internal audits primarily as a method to determine whether there are problems or not. While the figures suggest less than 65% are performing such audits, it is at least being done. It's important to recognize that doing audits of the systems can be helpful at reducing internal issues and uncovering weaknesses and vulnerabilities.

View the Resource

Share or bookmarklet this web page at: