Question

In: Accounting

List and explain the system activites that are required to be logged to ensure compliance with...

List and explain the system activites that are required to be logged to ensure compliance with the Sarbanes Oxley Act of 2002.

this is for an Information Systems Security class required for Accounting major

Solutions

Expert Solution

An organization, in order to ensure compliance with the Sarbanes Oxley Act of 2002 (SOX), has to collect, manage and analyze log data. As per SOX the parameters and conditions that must be monitored, logged and audited are network activity, database activity, login activity (both success and failures), account activity, user activity and information access.

A control framework is required and the purpose of log collection and monitoring systems is to provide an audit trail of all access and activity that are related to sensitive business information.

Systems should be implemented that tracks logins and detects any login attempts that are suspicious in nature. This will help with regards to preventing data tampering. The next aspect is with regards to recording of timelines for key activities and for this systems will have to be implemented that will be in a position to apply timestamps to all financial data and other data that are relevant with regards to SOX provisions. Systems that can receive data from any organizational source should be implemented. This will help to build verifiable controls to track access.

ekkarill92 answered 1 year ago
Next > < Previous

Related Solutions

What is required by Sarbanes-Oxley (SOX) to be logged? Or Describe the system processes executed and...
What is required by Sarbanes-Oxley (SOX) to be logged? Or Describe the system processes executed and data collected in the process of logging an event.
For a Clinical Decision Support System: create a policy to ensure compliance with health information, data...
For a Clinical Decision Support System: create a policy to ensure compliance with health information, data exchange or industry infrastructure standards.
For the following commands you must be logged in as user “system”. You will need to...
For the following commands you must be logged in as user “system”. You will need to do some research on the commands CREATE USER; GRANT CREATE SESSION; GRANT CREATE…..; GRANT ALTER …., GRANT SELECT….; REVOKE ……; and EXECUTE ….. 5. Create two database users:  The first is a concatenation of your first and last name (e.g. johndoe).  The second is a concatenation of your instructors first and last name (e.g. sallysmith) 6. Assign the two users privileges to...
Compliance measures are used in many cases to ensure the safety, quality and suitability of a...
Compliance measures are used in many cases to ensure the safety, quality and suitability of a product for a given market. However, compliance and certification process is sometimes used to make market entry more difficult for non-host company suppliers. Provide three examples of compliance being used for any of these "goals" (or more than one of them). Non-US only. Dig a little deeper than page 1. What was the outcome of the compliance requirements in the host market.
As an HIM compliance officer , Ensure the standardization of data dictionaries to meet the needs...
As an HIM compliance officer , Ensure the standardization of data dictionaries to meet the needs of the enterprise. Demonstrate applicable clinical data standards theory and development. Ensure data are in a format that will satisfy data integration needs: Interoperability Decision support Legacy systems Describe clinical data and clinical process modeling: UML-Unified Modeling Language UP-Unified Process
One of the approaches the ATO uses to ensure compliance is data matching. What is it...
One of the approaches the ATO uses to ensure compliance is data matching. What is it and how does maintaining records assist the taxpayer in complying with the requirements of the ATO? 80–120 words In contect of Australia , Please do not copy paste from other source
You are required to develop a petty cash system to ensure daily activities are carried out...
You are required to develop a petty cash system to ensure daily activities are carried out according to legislative requirements. i) Develop the policy ii) Develop a guideline for work procedures for: • carrying out a petty cash claim (for employees) and • advancing and accepting a petty cash claim (for the petty cash officer). The documents must be appropriately formatted and presented. Note: Providing any supporting forms is optional on this occasion.
To ensure compliance with the law and regulations, health care providers need to implement and maintain...
To ensure compliance with the law and regulations, health care providers need to implement and maintain an effective corporate compliance plan. What are the advantages and disadvantages of creating and effective corporate compliance plan?
One of the approaches the IRC (Internal Revenue Commission) uses to ensure compliance is data matching....
One of the approaches the IRC (Internal Revenue Commission) uses to ensure compliance is data matching. What is it and how does maintaining records assist the taxpayer in complying with the requirements of the IRC? (80-120 words)
Write powershell scripts to connect to Horizon View server, list all users and last time logged...
Write powershell scripts to connect to Horizon View server, list all users and last time logged in, and list virtual machines powered on and off. Powershell scripts to connect to Vmware horizon 7 and get list of users and VM's in pod.
ADVERTISEMENT
Subjects
ADVERTISEMENT
Latest Questions
ADVERTISEMENT