Create an account Home  ·  Topics  ·  Downloads  ·  Your Account  ·  Submit News  ·  Top 10  
Modules
· Home
· Content
· Directory
· Downloads
· FAQ
· Forums
· Search
· Sox_Admin
· Statistics
· Submit News
· Surveys
· Top 10
· Your Account

Sarbox Compliance
The appropriately named Sarbanes-Oxley Compliance Toolkit includes a whole range of materials specifically put together to both introduce, and take you through this most important of legislation.

For detailed information see the toolkit's own website: Sarbanes-Oxley Compliance


SOX Act and Security
As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.

The SOX email storage requirements can be fulfilled using the GFI MailArchiver


SOX Advertisers


Sarbanes What?
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!

Sarbanes-Oxley Act Forum: Forums

The Sarbanes Oxley Act :: View topic - Physical Security Audit
 Forum FAQForum FAQ   SearchSearch   UsergroupsUsergroups   ProfileProfile   Login to check your private messagesLogin to check your private messages   LoginLogin 

Physical Security Audit

 
Post new topic   Reply to topic    The Sarbanes Oxley Act Forum Index -> Sarbanes-Oxley: Audit Issues
View previous topic :: View next topic  
Author Message
JLewis
Soxer
Soxer


Joined: Jun 17, 2008
Posts: 37
Location: Vancouver
PostPosted: Wed Jul 23, 2008 4:45 pm    Post subject: Physical Security Audit Reply with quote
I have provided documentation on physical security, and issues that need to be addressed when using physical security as a mitigating control to minimize the threat of system security breaches. Just wondering, from an audit perspective, if there is any type of checklist that can be used as a template example of what an auditor might be looking for as far as physical security control attributes.

Thanks for any help.
JL
Back to top
View users profile
Denis
SoxGuru
SoxGuru


Joined: Nov 25, 2004
Posts: 787
Location: London, UK
PostPosted: Thu Jul 24, 2008 2:57 am    Post subject: Reply with quote
You can get a few sample checklists here:

Code:
http://www.auditnet.org/freeap.htm


You'll need to register, but there is free content.
_________________
"The art of life is to deal with problems as they arise, rather than destroy one's spirit by worrying about them too far in advance" - Cicero
Back to top
View users profile
harrywaldron
SoxGuru
SoxGuru


Joined: Jan 12, 2006
Posts: 849
Location: Roanoke, Virginia
PostPosted: Thu Jul 24, 2008 11:55 am    Post subject: Reply with quote
Below are a few other quick items found that might help:

COBIT 4 - May have some physical security considerations noted
http://www.sarbanes-oxley-forum.com/modules.php?name=Forums&file=viewtopic&t=2470

SAS-70 has quite a bit of physical security concerns, along with other links
Code:
http://www.google.com/search?hl=en&q=sas+70+audit+templates
http://www.google.com/search?hl=en&q=physical+security+audit+templates
http://www.sans.org/resources/policies/
Back to top
View users profile Visit posters website


Display posts from previous:   
Post new topic   Reply to topic    The Sarbanes Oxley Act Forum Index -> Sarbanes-Oxley: Audit Issues All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Forums ©

 
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters.
Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox.
Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.