Sarbanes-Oxley Act (SOX)
The primary vulnerability management goals of the Sarbanes-Oxley Act are to understand the flow of transactions, including IT aspects, in order to identify points at which a misstatement could arise, to evaluate controls designed to prevent or detect fraud, and to perform fraud risk assessment.
Congress passed the Sarbanes-Oxley Act largely to protect investors by improving the accuracy and reliability of corporate disclosures. The Sarbanes-Oxley Act imposes penalties that require management to certify and demonstrate that they have established security controls to safeguard financial information. While beneficial to the investing public, financial organizations now must ensure their operations are Sarbanes-Oxley compliant.
eEye Digital Security® helps companies meet compliance with Section 404 of Sarbanes-Oxley by:
-
Detecting vulnerabilities before they can be exploited. eEye Digital Security's Retina Vulnerability Assessment solutions allow administrators to identify vulnerabilities, misconfigurations, and zero day attacks.
-
Mitigation. When Retina finds vulnerabilities, it leads network administrators to the fastest fixes for them using hyperlinks and the latest remediation documentation.
-
Ensuring data integrity, availability and confidentiality. eEye Digital Security's frequent updates provide protection from the latest threats and even zero day vulnerabilities.
-
Documenting SOX network security compliance. eEye Digital Security reports provide customers with comprehensive records for documenting SOX compliance and a historical perspective of a network's security posture through delta and trending reports.
-
Demonstrating protection from attack. The eEye Digital Security’s Blink Endpoint Protection Platform provides a high level of assurance of protection from an attack.
More detailed information regarding SOX can be found at http://en.wikipedia.org/wiki/Sarbanes-Oxley_Act