SOX
- Sarbanes Oxley
This law
was passed to restore the public's confidence in corporate governance
by making chief executives of publicly traded companies personally responsible
in validating financial statements and other information. Information
technology plays a key role in supporting a company�s internal control
framework and compliance with Sarbanes-Oxley requirements. Identity
management is one component of a strong security program This is where
Symtrex aids in SOX compliance . When combined with improved business
processes and procedures, identity management technology provides the
infrastructure to automate user management processes, improve auditing
and reporting, provide access control and authentication, support IT
controls�and ultimately, reduce risk
In the
U.S, the most broadly accepted framework for internal control is provided
by the Committee of Sponsoring Organizations of the Treadway Commission
(COSO). One of the strongest trends driving sustainable Sarbanes-Oxley
compliance programs is the realization that IT and information security
are a crucial part of the internal control environment.
Information
security capabilities protect the value of information�its confidentiality,
integrity and availability�and also the integrity of the internal control
system required to meet compliance and reporting obligations. IT security
is the means to support internal controls by helping enterprises meet
the following control objectives:
- Enabling appropriate access controls
- Enforcing
segregation-of-duty (SOD) requirements
- Protecting
information assets
- Safeguarding
data integrity
Security
focuses on completeness and primarily on ensuring restricted access
and, to some extent, on ensuring the accuracy and validity of
data and transactions.
Companies
need a way to manage, store and retrieve approvals in a streamlined,
automated fashion. to produce timely reports on who requested
access (segregation-of-duties (SOD) restrictions), what access
was requested, who approved the request (Role-Based Access Control (RBAC)),
and what level of access was approved.� This is known as identity
management and Symtrex excels in this regard in providing automated
tools that ensure uniform, consistent and auditable business processes
to manage user profile information across various platforms.
How
Symtrex Assists
Symtrex's
solutions provide a comprehensive user management platform that provide
the automated logging, monitoring and reporting of user access and approvals
that senior management can view in real time, helping bring down the
spiraling costs of compliance.
Contact
us
today to receive more information.
|
|
|
|
