Resources for Sarbanes-Oxley (SOX)

Compliance audits must go beyond only the technology

blogs.techrepublic.com.com

Most administrators and managers release a collective growl in response to discussions regarding compliance management. Achieving Sarbanes-Oxley, ISO 27001, COBIT, HIPAA, and other compliance levels are great goals and requirements for some, but the fact is that most organizations simply do not have the time to dedicate the resources to deliver an accurate assessment. While there are many tools that can address the technology aspects of compliance, not all offer a comprehensive approach to scoring all factors.

Recently, I had an opportunity to work with the Modulo Risk Manager platform. I was impressed by its ability to deliver a security index score based on a comprehensive approach that actually starts at the top with business process and proceeds with a top-down approach from the process. From here, specific technologies, staff, facilities, and controls are integrated to provide a comprehensive knowledge base that spans over 11,000 controls, 4200 data collectors, and 250 checklists.

View the Resource

Share or bookmarklet this web page at: