Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase

Online Resources Expand / Collapse
Author
Message
Posted Wednesday, February 18, 2004 3:11 PM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Monday, August 18, 2014 8:24 AM
Points: 6,634, Visits: 1,871

Text of Sarbanes-Oxley Act of 2002:

http://news.findlaw.com/hdocs/docs/gwbush/sarbanesoxley072302.pdf

US Securities and Exchange Commission Resources:

http://www.sec.gov/spotlight/sarbanes-oxley.htm

American Institute of Certified Public Accountants:

http://www.aicpa.org/sarbanes/index-07-09-03.asp

 



K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #101037
Posted Monday, February 23, 2004 8:00 AM
SSChampion

SSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampionSSChampion

Group: General Forum Members
Last Login: Friday, May 18, 2007 3:36 PM
Points: 10,039, Visits: 1
No one has responded to this topic yet. Even if you don't have a complete answer, the original poster will appreciate any thoughts you have!
Post #101734
Posted Thursday, March 4, 2004 12:40 PM


SSC-Addicted

SSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-Addicted

Group: General Forum Members
Last Login: Wednesday, August 21, 2013 3:41 PM
Points: 413, Visits: 323

Is there a sarbanes-oxley for idiots book?

What is the sarbanes-oxley act and as a DBA why should I care?

  




John Zacharkan
Post #104412
Posted Tuesday, March 23, 2004 1:15 PM
Grasshopper

GrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopperGrasshopper

Group: General Forum Members
Last Login: Friday, February 17, 2006 7:10 AM
Points: 17, Visits: 1
The Sarbanes-Oxley act came in the wake of the fallout from Enron (among others).  As a dba, you will most likely be involved in the section 404 testing.  Your auditors will have to sign off on the attestation of your officers and board of directors that all data critical to the accurate and timely reporting of financial statements has adequate controls.  That means that you will have to prove that your disaster recovery, security, and many other measures that you, as the dba, will most likely be responsible for are adequate to insure that the shareholders can get the information they need to make informed decisions.


Post #107811
Posted Wednesday, March 24, 2004 2:24 PM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Monday, August 18, 2014 8:24 AM
Points: 6,634, Visits: 1,871
There isn't a Sarbanes-Oxley for Idiots book, unfortunately, since a lot of S-Ox is still like HIPAA... open for legal interpretation.

Sarbanes-Oxley, in a nutshell, is designed to ensure non-fraudulent financial reporting by publically traded companies. It enforces personal responsibility for the "C-levels" within these companies. In other words, they sign their name saying that the financial report is accurate and hasn't been tampered with. Should it not be, they could face jail time. Along with that, they sign on saying the internal controls designed to produce accurate financial reporting are in place and working. Internal controls hit heavily upon IT. For instance, who has access to the database server where the source data comes from? Controls to prevent unauthorized access must be in place. In addition, auditing mechanisms must be in place. And they must be tested and working.

For organizations outside of "publically traded" status, there are copy cat laws and regulations coming out that apply to all companies, regardless of status. Indiana's language changes to its RFP process is a good example.



K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #108079
Posted Sunday, October 9, 2005 4:24 PM
SSC Rookie

SSC RookieSSC RookieSSC RookieSSC RookieSSC RookieSSC RookieSSC RookieSSC Rookie

Group: General Forum Members
Last Login: Saturday, May 17, 2014 5:36 PM
Points: 37, Visits: 27

Information Systems Audit and Control Association (ISACA -http://www.isaca.org/)

IT Control Objectives for Sarbanes-Oxley Final Document

 




Post #227487
« Prev Topic | Next Topic »

Add to briefcase

Permissions Expand / Collapse