The appropriately named Sarbanes-Oxley Compliance Toolkit includes a whole range of materials specifically put together to both introduce, and take you through this most important of legislation.
As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.
The SOX email storage requirements can be fulfilled using the
GFI MailArchiver
SOX Advertisers
Sarbanes What?
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!
Sarbanes-Oxley Act Forum: Forums
The Sarbanes Oxley Act :: View topic - SOX / HIPAA/DPA compliance in India
Posted: Tue Nov 29, 2005 3:24 am Post subject: SOX / HIPAA/DPA compliance in India
I would appreciate if you could provide some some info on achieving SOX / HIPAA/DPA compliance by BPO companies operating in India servicing US/UK clients.
1. Road Map to SOX / HIPAA/DPA compliance
2. Who is offering this service in India
3. Cost of certification.
Joined: Nov 25, 2004 Posts: 787 Location: London, UK
Posted: Tue Nov 29, 2005 5:34 am Post subject:
Don't spam the board please. Can you delete the other two threads that you created for the same subject.
Thanks. _________________ "The art of life is to deal with problems as they arise, rather than destroy one's spirit by worrying about them too far in advance" - Cicero
Denis, I am sorry and Thanks sysadmin for deleting my duplicate postings. I was thinking that I would get some reply from someone at the earliest. I will avoid posting duplicate messages hereafter. Kind regards..
Well I cannot tell you the name of any specific agency or person providing this services. However, recently Infosys and Bank of Panjab or Panjab National Bank(not sure which bank) have done the sox compliance. You can approach them for further guidance. The mentioned bank, although, has nothing to do with Sox as far as indian law is concerned, however, they are proactively doing this after getting impresssed by the law.
Joined: Nov 25, 2004 Posts: 787 Location: London, UK
Posted: Tue Nov 29, 2005 12:02 pm Post subject: Re: SOX / HIPAA/DPA compliance in India
span wrote:
I would appreciate if you could provide some some info on achieving SOX / HIPAA/DPA compliance by BPO companies operating in India servicing US/UK clients.
1. Road Map to SOX / HIPAA/DPA compliance
2. Who is offering this service in India
3. Cost of certification.
Kind Regards and thanks..
Can't comment too much on HIPAA but unless the specific BPO company was listed in the US (i.e. required to submit 20-F to SEC) then there woul dbe NO REQUIREMENT TO COMPLY WITH SOX.
What the BPO's will need to do is provide a degree of comfort around their ability to control what they do for their clients. With this in mind you might want to look at some of hte threads on here around SAS 70 and outsourced service providers. _________________ "The art of life is to deal with problems as they arise, rather than destroy one's spirit by worrying about them too far in advance" - Cicero
Its the question of controls outsourced to a subsidiary or service provider in another country.
Its the parent organization which is getting SOX certification so decide first whether the organization in other countries are in scope for SOX or not.
Pls refer to the ealier post by many senior members in this forum which covers this topic adequately.
Posted: Wed Jan 31, 2007 9:05 am Post subject: Indian companies which are SOX compliant??
Could someone please let me know:
1) Which are the Indian companies that are SOX compliant
2) What the deadline/timeline is
3) Is applicable on which industries (IT firms for example)
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters. Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox. Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
