Tag Archives: Compliance Audit

Why failing an audit is a good thing: Thoughts from the field.

Posted on October 14, 2011 by Chris Rich

Recently I posted an article in the Security Group on Spiceworks from Network World on the benefits of failing an IT audit. I also posed the question to this group, “Would you rather fail an audit to uncover weaknesses, or … Continue reading →

Posted in Articles | Tagged audit, auditing, change auditing, Compliance, Compliance Audit, IT compliance | Leave a comment

10 Risky Types of Change

Posted on September 28, 2010 by Stephen Schimmel

Change is inherent to the growth of any successful organization. Adaptation to organizational changes is a necessary reality, and without it, organizations couldn’t keep up with the changing times, demographics, workflows and business. That is why changes in IT infrastructure are a necessary component of all flourishing organizations.

Changes to any IT infrastructure, however, are also the root of much malevolence, as far as security and compliance efforts are concerned. Change is a necessary evil that results in, for example, newly added or removed network devices, permissions modifications and changes in server configurations, and some of the amendments to a once secure IT infrastructure that pose threats to both security measures and regulatory compliance.
Continue reading →

Posted in Articles | Tagged auditing, Compliance Audit, IT management, IT security, NetWrix, risky infrastructure changes | Leave a comment

Challenges of SOX Compliance

Posted on July 26, 2010 by Stephen Schimmel

SOX compliance has become an increasingly important issue for organizations of all kinds. Intended to assign a quantifiable level of accountability to organizations and the IT controls that impact financial reporting operations, the act includes two sections that affect IT departments—section 302 (Corporate Responsibility for Financial Reports) and section 404 (Management Assessment of Internal Controls). Of course, failure to meet these, or any other requirements levied by SOX standards, can result in serious penalties and loss of credibility. Continue reading →

Posted in Articles | Tagged Compliance, Compliance Audit, IT management, Regulatory Compliance, SOX, SOX audit, SOX Comppliance | 1 Comment