The Sarbanes-Oxley Act of 2002, which was an act in reaction to a number of corporate and accounting scandals that directly impacted investors. The essence of the act is to establish accuracy and reliability of corporate disclosures made pursuant to the securities laws, and for other purposes. It contains eleven sections, however from a cyber security perspective it is section 4.4 – Assessment of Internal controls.
Our suite of products and services are geared for any size organization that has to comply with SOX or any other compliance requirement/ security best practices. The products can be used individually with other security products that are already in hand as well.
With SOX, as it refers to specifically to internal controls on financial reporting, the best place to start is to determine who has access to the financial data. You can use a product similar to either the SolarWind Network Topology or Hexis NetBeat NAC.
If you have done network segmentation, you could put a firewall in to further protect the data, such as the Sophos UTM.
A key product would be a form of malware /virus detection, such as the End Point Security(Sophos or Kaspersky), one of the key items here is device control such as blocking data from moving to a USB device, or emailed out. In addition you should add application control.
Using a product such as the Hexis NetBeat NAC, would enable an organzation to determine those that are trusted and untrusted to access specific assets. As well put in place security policies that are date stamped with confirmation that they are being regularly updated. In addition it will block any traffic that is being sent out of the network to command and control centers.
Review of log files is essential for SOX as this provides detailed information as to the activity in your organization, and do file integrity monitoring. . Depending on your budget, expertise and requirement, we currently offer several tools.
SolarWinds Event & Log Management tool, which provides for easy installation, a comprehensive library for most compliance requirements, including Sarbanes Oxley. This product is well suited for those organizations that have a limited budget, limited resources but needs to have the power of an SIEM that Enterprise/Global Organizations require. In addition with their new File Integrity Monitoring, the product provides a great addition.
AlertLogic, which is a cloud based solution.
For those organizations that require security analytics or advanced data analysis and already have deployed a robust SIEM product, the Hawkeye AP is a great addition, allowing an organization to capture petabytes of data to run queries against and then send to the SIEM.
You can visit our white papers section of additional information on our products and how they can assist with compliance.