Who interpreted this act for IT so poorly? 171
-
If you actually read the act, there is only about 4 pages related to what the act is for. There is no mention of IT, computer systems, developer access, or anything even remotely close to this.
All the SOX law says is that the principals of the company (CEOs, CTOs, CFOs, etc) have to sign off on the accuracy of their financial results, and if they lie, they are subject to criminal prosecution. That’s it.
Where did someone turn that into ‘Developers cannot access production, production cannot access development, and QA can’t access anything outside of QA’? How are we as developers expected to effectively do our jobs when we can’t even troubleshoot a problem should it occur?
At my company, we all pray that our apps don’t get on the SOX list. As soon as they do, your life goes to hell.
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!
-
This post is deleted!