Credit to Mark Crofton for spotting this blog-newsletter, fiercesarbox. Subscribed! It is a super source of compliance related news and fluff free commentary. Some examples.
The new guidance from the SEC and PCAOB
Sarbox costs continue to decline, audit fees remain high
Myth busted: Sarbox not driving away U.S. companies
Compliance readiness: a way of life?
More jargon: What is a SAS Type II Exam?
All good stuff, but I’ll leave you with this gem
Sarbanes-Oxley is a convenient scapegoat in a lot of ways. If a company wants to go private, there’s no shame in citing the law. If a CFO wants to step down, he can always say Sarbox has made his job impossible. Exchanges can always blame Sarbox when another listee goes overseas. The list goes on and on. Perhaps you should use this wonderful scapegoat to your advantage. Tim Minahan, a supply chain expert who cut his teeth at Aberdeen, has released an e-book called the The 100 Greatest Supply Management Tips of All Time! Tip No. 11 is a great one: “Create a Crisis: Whenever possible, link your supply management initiative to a top corporate goal or challenge, such as complying with the Sarbanes-Oxley Act or managing risk. This speeds alignment and can help secure executive and stakeholder support.” So there you have it. If you want something done, use Sarbox
May 31, 2007 at 10:11 am
[...] a final piece of irony, Thomas points to a piece that talks about Sarbanes-Oxley as a scapegoat. It’s also a great way to spread [...]
August 2, 2007 at 5:17 am
I would like to introduce one website which I recently came across provides a wonderful tool to comply with regulations like SOX and it also helps in complying with many other regulations also like HIPAA, ISO 17799. A crosswalk matrix poster between different regulations of Symantec is a very useful tool for compliance team and risk management office. This poster is crosswalk between: Sarbanes Oxley, HIPAA, ISO 17799, COBIT 4.0, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada) http://www.compliancehome.com/symantec/compliance.html
September 20, 2007 at 12:05 pm
Contingency plan templates created by http://www.training-hipaa.net can jump start HIPAA, Sarbanes Oxley (SOX), FISMA, ISO 17799 and many other regulations/standards contingency plan project which includes risk assessment, business impact analysis (BIA), business continuity plan (BCP), disaster recovery program (DRP), emergency mode operation plan (EMOP), data backup plan, testing and revision procedures and many other projects. These templates can also be used by IT departments of different companies, security consulting companies, manufacturing company, servicing companies, financial institutions, educational organizations, law firms, pharmaceuticals & biotechnology companies, telecommunication companies and others. Any organization large or small can be use these templates
http://www.training-hipaa.net/template_suite/enterprise_contingency_plan_template_suite.htm
February 7, 2008 at 1:07 pm
Your site seems to have some cool stuff. I like the bit about Tim Minahan. Im looking for infomation on the areas below as im trying to get a holistic view on this.
Database Threat Monitoring
SOX Compliance
Log Management
I feel that there is too much ‘Golden Joystick’ awards and lots of attention paid to them but not any to the nitty gritty of the internet. theotherthomasotter have pointed out some great areas that I want to look into. As such please email me at blipblaume@gmail.com