Sarbanes-Oxley and your security program

There are several links between Sarbanes-Oxley requirements and a companys security program. They include: ensuring appropriate awareness of company security policies and commitment by management; designing and implementing appropriate security controls; and documenting and auditing security policies, and making sure they are understood by management and end users.

Copyright © 2003 IDG Communications, Inc.

Microsoft's very bad year for security: A timeline