As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!
Sarbanes-Oxley Act Forum: Forums
The Sarbanes Oxley Act :: View topic - Has anyone mapped ISO1799 to CoBIT ?
Posted: Wed Apr 06, 2005 9:54 am Post subject: Has anyone mapped ISO1799 to CoBIT ?
I am in the process of auditing a company that is fully ISO1799 compliant. The controls are very similar to CoBIT and it looks like the best approach is to map or link the framework sections, rather than start the audit from scratch. For example ISO1799 section 10.3 deals with encryption. The corresponding CoBIT section is DS 11.
Has anyone done or seen a mapping table or something similar other than the Price Waterhouse powerpoint on the ISACA site?
I am also involved in implemeting SOx internally, but never been in touch with COBIT or ISO....
I am not member of ISACA. Would you agree to share this report by mail in order to get some familiarity...
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters. Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox. Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.