Network Quality Assurance: Sarbanes Oxley Compliance

Know your network

Much has been written about Sarbanes Oxley (SOX), the regulations that were created to prevent future Enron debacles. The thing to remember about SOX is that it is primarily focused on the accuracy of financial reporting data. IT security is important under SOX only to the extent that it enhances the reliability and integrity of that reporting. So if threat conditions are present on a SOX-governed corporate network, can one reasonably conclude that their systems are secure and haven't been tampered with? Likely, no.

Most SOX-related compliance tools cost a small fortune and are focused on the documentation of processes and procedures. They don't address what's actually happening on the network. These processes are done manually by IT engineers and consultants who must crawl all over the network and collect log data from various systems and devices. It's all quite useful but also quite disruptive and expensive. Congruity Inspector was designed to offer a consistent, cost-effective and automated process to verify and document that IT systems and data are safe from the biggest areas of risk: the Internet and internal users.

One tool = Many solutions

Threat Inspector simplifies SOX compliance audit and documentation and can identify threats that leave IT systems and confidential data exposed:

• Security Base-lining
• Passive Pen-test
• Endpoint Threats
• Identify Data Leaks
• IT Risk Assessment
• Filter Effectiveness