Device Hardening and Continuous Compliance Monitoring CONTINUOUS COMPLIANCE

Sarbanes-Oxley SOX Compliance

SOXIn the wake of a number of corporate accounting scandals, including Enron, Peregrine Systems and WorldCom, the Sarbanes-Oxley Act was introduced ‘To protect investors by improving the accuracy and reliability of corporate disclosures made pursuant to the securities laws, and for other purposes’ The intent of the Act was to ensure that similar cases of accounting fraud and the misleading of investors would be prevented in the future for all publicly held companies, management and public accounting firms.

One of the key elements of the legislation is that company executives must take personal responsibility for the veracity of financial information, with far greater penalties for other financial fraud. The necessary internal controls/operational controls in terms of accounting and auditing require sufficient levels of governance, defined in SOX Section 404.

A ‘Top Down’ risk assessment must be conducted by Management, operating in conjunction with an independent external Auditor, covering a number of key questions:

  • Are internal controls related to significant accounts and financial reporting effective?
  • What is the potential risk for fraud or misrepresentation for business transactions with respect to IT systems and operational practices?
  • Do company-level controls comply with COSO framework best practices?

In order for any organization to even attempt to attest to SOX compliance will require secure, protected and governance-assured IT systems.

From an internal controls SOX 404 standpoint, NNT Change Tracker ensures that IT systems are protected from fraud and misuse, with requisite audit trails provided to prove system integrity has been maintained.

Systems must be hardened and provisioned on a strict ‘principle of least privilege’ basis and Change Tracker’s certified auditing technology for CIS Benchmark Checklists ensures that all available vulnerability mitigations are in place at all times.

Finally, the provision of a ‘Closed Loop’ Change Management system is vital to show exactly what changed and by whom at any stage in order to govern system integrity. By extension, any Unplanned Change will be highlighted for investigation and either approval or remediation in line with COBIT Framework best practices, favored strongly by SOX 404 Auditors.

 

try it get a quote request a demo ask a question

And the number one solution that delivers all the
key security and compliance benefits of file integrity monitoring is NNT Change Tracker™

Easiest To Use – Most Fully Featured – Most Affordable
Learn more about NNT Change Tracker here

Products
Trusted by:
bobby-cox.jpgeon.jpggowireless.jpggm.jpgcontinuum.jpgCompliance-360.jpgabrsm.jpgbowtie.jpgnymbus.jpgvnpay.jpgford.jpgdatamatx.jpgpurchase.jpgnashville-int-airport.jpgforeshore.jpgpkr.jpgamdocs.jpghei-hotels.jpgseapines.jpgorbcomm.jpgghl.jpgnafsa.jpgwestfield-state-university.jpgessex-police.jpgcua.jpg5thavetheatre.jpgnhs-bury.jpgdhl.jpgadvance2000.jpgmaxwellpaper.jpgbriefing.jpgodeon.jpgfirst-quantum.jpgbarton-cooney.jpgbchdigital.jpgScotRail.jpgBlackbird-Technologies.jpgnkwd.jpgrayonier.jpghub_logo.jpggvec.jpgnorcotek.jpgderivco.jpgspendvision.jpgwallashops.jpgjet-blue.jpgcrowedunlevy.jpgageas.jpgnewlook.jpgpartnerships.jpgwett.jpg4wheelparts.jpgmarwoodgroup.jpglandisgyr.jpgpaypro-business.jpgAWA-Collections.jpgShelby-County.jpgblakemore.jpgtheatreroyal.jpgcuany.jpgedm.jpgraiffeisen.jpgeztaxreturn.jpggeneral-dynamics.jpghph.jpginss.jpgsynergiecontact.jpgunifiedpayments.jpgacas.jpgdupont.jpgarqiva.jpghhglobal.jpgpma.jpgactivetelesource.jpgrealec.jpgzenithbank.jpglark.jpgsajan.jpgenmax.jpgalamo-colleges.jpgspar.jpgbankofchina.jpgeasystreet.jpgcredimax.jpgingbank.jpgcablewire.jpgzap.jpgnctm.jpgaciconn.jpgredwood.jpgequiant.jpgduoboots.jpgcare.jpgwizzair.jpgfis.jpgzamir.jpgwhsmith.jpgaspen.jpgkenneth-copeland.jpgconcord.jpgsymetra.jpgRed-Card-Systems.jpgovec.jpgrentatoll.jpgBiaggis.jpgushmm.jpgjohnsons.jpgprometric.jpgpass.jpgmtrgaming.jpgveolia.jpgnxgen.jpgwhynotleaseit.jpgboomkat.jpgaimia.jpgsymago.jpgticketmaster.jpgtravelodge.jpgleidos.jpgpowerchord.jpgharbouritau.jpgsunchemical.jpgiridium.jpgstjoe.jpgislandbanki.jpgthewestbrom.jpgentee.jpgryanair.jpggolubcapital.jpgbom.jpgAeriandi.jpghandh.jpgNIBSS.jpgxap.jpguniversal-orlando.jpgvoxgen.jpgselectcore.jpgsiconns.jpgdudley-nhs.jpgxerox.jpgTotal-Card.jpgStandard-Hotel.jpghbl.jpgstpeters.jpgpicturehouse.jpgMontrose-Travel.jpgRichland-Logistics.jpglivenation.jpgcsmartlive-casino.jpghp.jpghampshire.jpgucsandiego.jpgdunelm.jpgretail-lockbox.jpgpando.jpgkennethhagin.jpgonpoint.jpgcboss.jpgaberdeen.jpgshearwater.jpgbnpparibas.jpgbrocade.jpglivetv.jpgvse.jpgpaymetric.jpghepsiburada.jpgiac.jpgpunter-southall.jpgtechnologypros.jpgxaxis.jpgcolliercounty.jpgnhs.jpgPenn-State-Uni.jpgjack-wills.jpgchaparral.jpgbritish-museum.jpgvmi.jpgeTranzact.jpgberkshireassociates.jpgace.jpgbrightstar.jpgcornell.jpgduncansolutions.jpgni.jpgeuroffice.jpgkalmbachpublishing.jpgzen.jpgskipton.jpgSpanson.jpgrnib.jpgcentertheatre.jpgcigna.jpgepay.jpgarmy.jpgwindsorandmaidenhead.jpgwestern-financial-group.jpgdublin-business.jpgclickandbuy.jpglansare_logo.jpghotel-cholat.jpgdeluxecorp.jpgopportune.jpgharrods.jpgsimmons.jpgwonga.jpgunionbank.jpg
USA Offices
New Net Technologies Ltd
Naples
9128 Strada Place
Naples, Florida, 34108
Atlanta
201 17th Street, Suite 300
Atlanta, Georgia, 30363.

Tel: 1-888-898-0674
email USinfo@nntws.com
NNT Logo
UK Office
New Net Technologies Ltd
Spectrum House, Dunstable Road
Redbourn,
St Albans

Herts
AL3 7PR

Tel: 08456 585 005
Fax: 08456 122 031
email info@newnettechnologies.com
Connect with NNT
Google+ Linkedin Twitter - Change Tracker Facebook rss feed YouTube
Sign up to NNT's IT security and compliance monthly newsletter. Get breaking security news, how-to tips, trends and commentary direct to your inbox.

Sign up to the NNT newsletter