SOX COMPLIANCE

Enhance Corporate Governance & IT Security with SOX Compliance Solutions

The Sarbanes–Oxley (SOX) Act requires corporate financial disclosure for all publically traded companies in the US. Enacted in 2002, it aims to strengthen corporate responsibility and prevent accounting fraud.

Strengthening Governance and Accountability in IT Operations of Public Companies

Accurate and verifiable corporate disclosures

The Sarbanes–Oxley Act of 2002 (SOX) is a federal law that establishes requirements for all U.S. publicly traded company boards, management, and public accounting firms. The purpose of the legislation is to improve the accuracy and reliability of corporate disclosures.

Executive responsibility and corporate audits

Sections 302 (“Corporate Responsibility for Financial Reports”) and 404 (“Management Assessment of Internal Controls”) are particularly relevant to information professionals. Section 302 holds CEOs and CFOs personally accountable for disclosure accuracy, while Section 404 requires corporations to have their internal controls audited and reported annually to the SEC.

Addressed SOX Compliance Requirements

The Information Technology Governance Institute (ITGI) developed IT control objectives for SOX using the COSO and COBIT frameworks. The controls below represent a sample of COSO and COBIT recommendations that apply to Cygna Auditor.

AI3.2

Infrastructure Resource Protection and Availability

AI7.7

Final Acceptance Test

DS4.3

Critical IT Resources

DS5.5

Security Testing, Surveillance and Monitoring

DS10.2

Security Testing, Surveillance and Monitoring

AI6.5

Change Closure and Documentation

DS3.5

Monitoring and Reporting

DS5.3

Identity Management

DS5.4

User Account Management

DS13.3

IT Infrastructure Monitoring

Monitor Activity on Secured Systems

Cygna Auditor captures both successful and failed data access events, including file and folder creation, access, updates, and deletions, while providing full attribution of who performed each action and when.

Real-Time Notification of Sensitive Changes

Cygna Auditor provides built-in and customizable alerts that immediately notify you of critical security events, such as changes to privileged group membership.

Privileged Identity Activity Visualization

Cygna Auditor monitors all changes made by privileged identities to ensure compliance with regulatory and organizational policies and to prevent misuse of elevated access.

Meet SOX Compliance Requirements

Our experienced engineers will fine-tune the demo based on your specific needs. You’ll find out how easy it can be to secure your sensitive data.