SarbanesOxleyFocus.com

Argent software is one of compliances software available nowadays for Sarbanes Oxley compliances. Here some explanation and specification of the software:

• Argent Data Consolidator collects, scans, and consolidates all critical data from across the worldwide enterprise into centralized ODBC databases.
• Argent processes data from any data source
• Argent scales for the real world - Argent can collect, scan and archive data at over 600 gigabytes per hour. Because Argent uses ODBC backend databases, (more…)

  Popularity: 9% [?]

Every company that would comply with Sarbanes Oxley compliances need to carefully design control regarding system log management. From COBIT for SOX published by ISACA we know that we can apply this control statement regarding this case: “System event data are sufficiently retained to provide chronological information and logs to enable the review, examination and reconstruction of system and data processing” However, the next question would be arise is how deep is sufficient enough? Regarding system log, access to system log only limited to read only and the access is only for system administrator. So others user doesn’t need to get read access, and of course write access. Some of application who comes with default user who has access to system log should be removed. For example, Oracle Database or Sun Solaris default user who has access to read/write system log should be removed. Basically removing all default user account is easier in this case. Access to system log should be very restricted. Some of company using write once disk to maintain the integrity of system log. This is considering very important, because if some one could change the system log then we cannot rely for system log evidence. Compensating control In some cases, removing access to system log is too difficult. Or if the system administrator account is shared –because somehow the company was very large and need more than one system administrator then the next step would be implementing compensating control, which in this case Log Activation Review, Log Review, Administrator account log review. This compensating control also would be advantage to be used when facing performance related issue if enabling the system log. So do you have any others experience regarding system log management? In the future the application developer will use better feature regarding system log management, so I hope no need to worry about this.

Popularity: 9% [?]

SOX is really concerned about Financial and Compliance reporting. Providing accurate report is a challenge every company should face. Here is the list of reporting software that could be used for Sarbanes Oxley compliance. Another recommendation would be highly appreciate.

1. Actuate
http://www.actuate.com/
Actuate Corporation develops Business Intelligence, Performance Management and Java Reporting software. Actuate is also heavily involved in the Eclipse Foundation, as a board member, strategic developer and co-leader of the BIRT (Business Intelligence and Reporting Tools) project. Founded in 1993, the company employs about 600 people and serves over 4,000 customers worldwide.

2. Agata
http://www.agata.org.br/
Agata Report is a cross-platform database reporting tool created by Pablo Dall’Oglio. It contains graph generation and a query tool that allows you to get data from PostgreSQL, MySQL, SQLite, Oracle, DB2, MS-SQL, Informix, InterBase, Sybase, or Frontbase and export that data as plain text, HTML, XML, PDF, or spreadsheet (CSV) formats through its graphical interface. You can also define levels, subtotals, and a grand total for the report, merge the data into a document, generate address labels, or even generate a complete ER-diagram from your database. (more…)

Popularity: 9% [?]

Working with Sarbanes Oxley Compliances means work with a lot of document. From paper to electronic document, from 10 sheets spread sheet to thousand pages of log report. Managing document and evidence for SOX is very tired jobs and sometimes expensive.

Your company could buy some of expensive Document Management System from IBM, HP or others major vendor in Document Management. Otherwise we can choose several document management system available in opensource such as:

1. Open KM
http://www.openkm.com
OpenKM can be used by home users, corporations, government institutions and medium to small business. Its architecture allows you to manage your documents better, providing a more flexible, cost-effective alternative.

2. Mainpyrus
http://www.mainpyrus.org/
Mainpyrus is based on open standards to integrate itself in given environments. The server side of the system runs on Unix-like operating systems. On the client side it is web-based and contains clients for Windows and Linux written in Java. Its design aims at the needs of small and medium enterprise with the need for long-term archiving and document management. Main//Pyrus DMS consists of a server written in C++ and a Web application written in php which contains the Web page definitions written in xml. (more…)

Popularity: 8% [?]

Looking for free Sarbanes Oxley software? here is the simple tools for collaborative software that available in internet. By using collaborative software we can manage better communication with every employee or entity that related with SOX in organization. Any other suggestions?

1. Open Groupware
http://www.opengroupware.org/
OpenGroupware.org is an Open Source collaborative software (groupware) server for multiple clients. It is mostly written in Objective C and uses PostgreSQL and Apache. OpenGroupware.org is built on code released in 2003 by SKYRIX Software AG, it represents a product that been under development since 1996.

2. eGroupWare
http://www.egroupware.org/
eGroupWare is a free open source groupware software intended for businesses from small to enterprises. Its primary functions allow users to manage contacts, appointments and to-do lists. It is used either via its native web-interface, making access platform-independent, or by using different supported groupware clients, such as Kontact, Novell Evolution, or Microsoft Outlook. It can also be used by mobile phone or PDA via SyncML.

3. phpGroupWare
http://www.phpgroupware.org/
phpGroupWare, formerly known as webdistro, is a multi-user groupware suite written in PHP and part of the DotGNU project. It provides about 50 web-based applications including a Calendar, Addressbook, an advanced Projects manager, Todo List, Email, and File manager.

The calendar supports repeating events and includes alarm functions. The email system supports inline graphics and file attachments. The system as a whole supports user preferences, themes, user permissions, multi-language support and user groups. It includes modules to set up and administer the working environment. The groupware suite is based on an advanced Application Programming Interface (API). (more…)

Popularity: 8% [?]