IT Security Requirements of Sarbanes-Oxley.

Section 404 of the Sarbanes-Oxley Act requires companies to include in their annual reports a report of management of the company's internal control over financial reporting. How IT risks and controls are affected is explained in a Q&A format in a new publication from risk-consulting company Protiviti. Link to the Protiviti paper, Guide to the Sarbanes-Oxley Act: IT Risks and Controls,

Protiviti_Sarbanes0604.pdf525.54 KB



The Magazine — Past Issues


Beyond Print

SM Online

See all the latest links and resources that supplement the current issue of Security Management magazine.