As security is such a major theme on the Act, many organizations are using the international ISO standards. The ISO 27001 Portal outlines these. A copy of the standards, and security policies, can be obtained via the ISO 17799 Toolkit.
Our server logs indicate some interesting mis-spellings: Sarbannes Oxley, Sorbane Oxley, Sarbanne Oxley, Sarbaines Oxley, Sarbanesoxley, Sorbanes Oxley, Sabanes Oxley, Sarbane Oxley, and Sarbanes Oaxley, to name but a few!
Sarbanes-Oxley Act Forum: Forums
The Sarbanes Oxley Act :: View topic - Audit Process (IT)
Joined: Jun 17, 2008 Posts: 37 Location: Vancouver
Posted: Mon Jun 30, 2008 12:55 pm Post subject: Audit Process (IT)
Just wondering if anyone could point me in the direction of both the external and internal auditing process, specificly in relation to the IS Department.
After searching this forum i found an awesome link to the PCAOB documentation on their audit process. (Thanks again Harry) This document seems to relate directly to the Finance side of compliancy, my question being will this document cover all things needed to gain approval on the IT side of the equation? If not, is there anything out there that can aide me in this process?
Posted: Wed Jul 02, 2008 3:25 am Post subject: Check this out
I was suprised it was free (as it should be). There is an executive summary and a detailed standard outlined in the Cobit docs that can be found by going to the Control Processes forum and following the directions in t he post entitled:
Sticky: Free COBIT 4.x PDF copy by registering with ISACA
This should serve as the skeleton for the processes.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
Trademarks referenced on the SOX Act Forum are property of their respective owners. Comments are property of their respective posters. Sarbanes-Oxley Act Implementation Portal: Sarbanes Oxley compliance, information, software, & internal audit committee resources. Sarbox. Site source is copyright nuke (c)2003, and is Free Software under the GNU / GPL licence agreement. All Rights Are Reserved.