Archive for the 'security' Category

Download Accounting System Security Policy

Policy: This policy establishes the standards and procedures for accounting system security in compliance with management’s objectives.
Procedures: In order to gain access to the accounting system, an ABC Co. Accounting System Request Form must be completed and approved by the requester’s manager. This form is also used if it is necessary to change an existing […]

Popularity: 3% [?]

July 8th, 2008 | Posted in download, policy, security | No Comments

Risk Management, Accounting Judgments and IT Risk Governance: Audit Committee Agendas

According a survey from KPMG and the National Association of Corporate Directors. The top priority for audit committee agendas are:
1. Risk Management
2. Accounting Judgments and Estimates
3. IT Risk and Governance
28 percent of audit committee members are “very satisfied” they understand the process that management uses to identify and assess significant business risks, and only 21 […]

Popularity: 6% [?]

July 8th, 2008 | Posted in article, sarbanes oxley, security, survey | No Comments

Connecting Compliance, Security and Business Goals

Did you know that the difficulty in scaling existing compliance such as Sarbanes Oxley, HIPPA, PCI DSS, and security management programs to meet new requirements is creating a resource crisis within many organizations. As a result, large enterprises are seeking ways to actively streamline their compliance activities, to operationalize their security management programs, and to […]

Popularity: 33% [?]

June 25th, 2008 | Posted in article, sarbanes oxley, security | No Comments

Sarbanes Oxley Compliance for SAP R/3 Resources

From a regulatory compliance perspective, IT teams have two responsibilities: support enterprise-wide compliance efforts and ensure that IT itself is compliant with internal and external regulations such as Sarbanes-Oxley (SOX), HIPAA, PCI DSS, FDA, etc. In other words, the IT and SAP teams support the compliance efforts across all departments in the company as well […]

Popularity: 40% [?]

June 25th, 2008 | Posted in article, sarbanes oxley, security | No Comments

Cost Avoidance versus Return on Investment, a SOX Security perspective

Security has been and will continue to be an overhead expense for all organizations, as are payroll and other administrative tasks that are required to keep an organization running. The question that seems to pop up every few months in the security industry is, What is the value of all the security work that takes […]

Popularity: 34% [?]

June 24th, 2008 | Posted in article, sarbanes oxley, security | No Comments

Who has access to system log?

Every company that would comply with Sarbanes Oxley compliances need to carefully design control regarding system log management. From COBIT for SOX published by ISACA we know that we can apply this control statement regarding this case: “System event data are sufficiently retained to provide chronological information and logs to enable the review, examination and […]

Popularity: 69% [?]

April 4th, 2008 | Posted in article, framework, security, software | No Comments