[Log In] []

Exploring the science and magic of Identity and Access Management
Saturday, May 25, 2024

Happy Anniversary Sarbanes-Oxley

Author: Mark Dixon
Wednesday, July 29, 2009
6:05 pm

Sarbanes-Oxley SigningTomorrow, July 30th, is the seventh anniversary of the day the Sarbanes-Oxley act took effect in the United States.

I recently undertook a project to create a white paper entitled, "Identity and Access Management: Enabling Sarbanes-Oxley Compliance", drawing heavily from earlier Sun white papers, plus adding additional material about best practices for Sarbox compliance.  The paper provides an up-to-date and more comprehensive treatment of the subject than we had available in existing Sun collateral.

So, in celebration of the Sarbox anniversary, and coinciding with the Burton Group Catalyst Conference I am attending this week, I present this white paper for your review.  It hasn’t yet found its way to the "official" Sun website where it will be shortly, but you can download a complete .pdf copy from this site.

It was heartening to note that I heard nothing at the Catalyst Conference that would challenge my selection of the most important best practices for using Identity and Access Managment Principles in securing Sarbox compliance.  Here is my recommend list of best practices:

  1. Understand requirements.
  2. Recognize IT’s critical role.
  3. Understand the role of IAM.
  4. Think program, not project.
  5. Develop a strategy.
  6. Establish a governance process.
  7. Implement your strategy in phases.
  8. Give real-time visibility.
  9. Unify disparate compliance efforts.
  10. Assess progress and adjust as necessary.

After you have a chance to read the paper, please let me know what you think.  I’d be happy to answer any questions or feedback you have.

Technorati Tags: , , , , ,

Comments Off on Happy Anniversary Sarbanes-Oxley . Permalink . Trackback URL

Comments are closed.

Copyright © 2005-2016, Mark G. Dixon. All Rights Reserved.
Powered by WordPress.