Resources for Sarbanes-Oxley (SOX)

Hot or not: Effective regulatory compliance and security management

scmagazineus

There's no doubt that regulatory compliance has changed the role of IT security managers forever. No longer is it enough to find and fix vulnerabilities. Today, security processes need to be well documented and substantiated. So it's not good enough to be secure; organizations have to be able to prove they're secure. If done right, this additional layer of regulatory scrutiny and reporting can help enterprises combine their security and compliance programs better to streamline efforts, control costs and keep networks secure and compliant.

The best way to get there is to adopt IT governance frameworks that not only add more governance to IT operations, but also cover a significant percentage of regulatory compliance mandates, such as those associated with Sarbanes-Oxley, HIPAA, SB 1386, and the Federal Information Security Management Act (FISMA).

View the Resource

Share or bookmarklet this web page at: