February 21, 2005
Security Testing Important Everyday for Critical Financial Systems
After the auditors leave, companies are only required to do quarterly testing of the their controls. But systems and networks are living organisms and they change every day. Therefore, dectection of problems in systems should be ongoing not just quarterly. This is not about Sarbanes-Oxley, this is about system security that is under daily attack by hackers.
An article addressing this subject is here:
"An important thing to remember is networks change on a constant basis. Forward thinking companies are at least able to account for all network devices on a daily basis, and provide historical, auditable records for these assets. As the security and compliance teams work their way from the inside out, they find that if networks are not architected correctly, or a firewall setting is incorrect, the financial system is accessible to the entire company, not just the finance department. The only way to measure and stay up to date is with an automated discovery process." For the complete article, click here.
To learn more about how your company can stay ahead of Sarbanes-Oxley challenges, see www.issuescentral.com to see how the Sarbanes-Oxley Compliance Playbook(tm) provides a cost effective and rapid development tool.
An article addressing this subject is here:
"An important thing to remember is networks change on a constant basis. Forward thinking companies are at least able to account for all network devices on a daily basis, and provide historical, auditable records for these assets. As the security and compliance teams work their way from the inside out, they find that if networks are not architected correctly, or a firewall setting is incorrect, the financial system is accessible to the entire company, not just the finance department. The only way to measure and stay up to date is with an automated discovery process." For the complete article, click here.
To learn more about how your company can stay ahead of Sarbanes-Oxley challenges, see www.issuescentral.com to see how the Sarbanes-Oxley Compliance Playbook(tm) provides a cost effective and rapid development tool.
