Sarbanes-Oxley Compliance Using COBIT and Open Source Tools
The Sarbanes-Oxley Act (officially titled the Public Company Accounting Reform and Investor Protection Act of 2002), signed into law on 30 July 2002 by President Bush, is considered the most significant change to federal securities laws in the United States since the New Deal. It came in the wake of a series of corporate financial scandals, including those affecting Enron, Arthur Andersen, and WorldCom. The law is named after Senator Paul Sarbanes and Representative Michael G. Oxley. It was...
Search in google:
The Sarbanes-Oxley Act affects everyone in the finance or IT departments of publicly traded or pre-IPO companies who must spend much time and money figuring out how to comply. This book/CD-ROM package is not intended as a how-to manual for passing audits, but it does integrate information about the Act so that technical folks have an idea of the big picture. Coverage includes how to interface with auditors and deploy COBITstandards to streamline and control compliance systems. Coverage includes reasons to use open source tools and how to plan and organize a strategy, acquire requisite applications and implement the plan, and deliver, support, and monitor progress. The included "live" CD contains a self-contained version of Linux and the open-source software discussed in the text. Distributed in the US by O'Reilly. Annotation © 2006 Book News, Inc., Portland, OR
Chapter 1. Overview: The Goals of This Book Chapter 2. SOX and COBIT Defined Chapter 3. The Cost of Compliance Chapter 4. Why Open Source? Chapter 5. Domain I: Planning and Organization Chapter 6. Domain II: Acquisition and Implementation Chapter 7. Domain III: Delivery and Support Chapter 8. Domain IV: Monitoring Chapter 9. Putting It All Together Appendix- A COBIT Control Objectives Appendix- B KNOPPIX Live CD Parameters Appendix- C The GNU General Public License Appendix- D CD Contents at a Glance
\ From Barnes & NobleIT-related Sarbanes-Oxley (and other) compliance initiatives will never be easy or cheap. But the COBIT guidelines and best practices can make it far easier to cover all the bases. And using open source software can help you mitigate the costs of compliance. This book can help with both. \ The authors walk through the compliance process using a fictional case study and some very real open source software (including eGroupware, Zabbix monitoring, Knowledge Tree document management, Fedora Directory, and Webmin. This software -- along with the enterprise-class CentOS Linux distribution -- is all provided on disk, as the "ITSox2 Toolkit."\ You'll find guidance on defining and managing policies; setting and enforcing service levels; ensuring security; implementing clear workflows; identifying and remediating compliance gaps; and much more. Along the way, the authors share diverse stakeholder perspectives, offering valuable insight for achieving compliance from both business and technical viewpoints. Bill Camarda, from the February 2008 Read Only\ \ \
