SOX Compliance for IT

SOX Compliance for IT that’s Comprehensive, Cost-effective and Risk-based

The Sarbanes-Oxley Act (SOX) requires that all publicly-held companies must establish internal controls and procedures for financial reporting to reduce the possibility of corporate fraud. Being SOX compliant means your entire IT infrastructure—from server and network security to IT practices and operations—must be reinforced and configured to maintain and demonstrate continuous SOX IT compliance in the event of an audit.

Tripwire solutions provide IT with the internal controls necessary to continually collect and protect the sensitive information needed to report evidence of SOX IT compliance. Your SOX audits can now be quick and far less costly.

Tripwire Enterprise delivers your comprehensive solution by:

Addressing the Acquire and Implement (AI) and Delivery and Support (DS) guidelines of COBIT with out-of-the-box change audit reporting and a library of COBIT configurations.
Comparing system configurations to “gold systems,” reporting and remediating configuration items that vary from the "golden" standard.
Identifying authorized and unauthorized changes or suspicious event activity over a period of time.
Communicating those changes with reports that display trends in the effectiveness of and adherence to change process controls.
Providing industry standards and benchmarks to automatically assess configurations, and determining the degree of risk for operational, regulatory and security vulnerabilities.
Continuously maintaining a known and trusted state by establishing a secure baseline against which to measure change, and then automating the repair of configuration items if they fall out of compliance.

COBIT

The Control Objectives for Information and related Technology (COBIT) framework helps organizations get the most value from their technology investments by providing guidance for IT governance and controls, portions of which focus on the delivery and support aspects of information systems. Tripwire Enterprise incorporates the COBIT framework through custom configuration assessment profiles that organizations can use to achieve and maintain compliance with those sections.

Solution Brief

Sarbanes-Oxley Compliance: How Tripwire Helps

Infosecurity Europe 2012 Wrap Up
Infosec expert and ‘cynic’ Javvad Malik summarizes the most important aspects of Infosecurity Europe 2012. Some of the top trends and key takeaways: risk management and the rising role of the CISO....
Communicating the value of Information Security – Part 3
In part 2 of this series, I talked about getting to know the "language" of your particular business. This week, I want to talk about how to leverage Enterprise Architects, if they are available. They can be...
The Growing Pains of the New CISO
Recently we had an opportunity to interview Phil Cracknell (@PCracknell on Twitter) during Infosecurity Europe. Infosec expert and ‘cynic’ Javvad Malik asks Mr. Cracknell, Global Security and...

To read more blog posts, visit the State of Security Blog.

Sustaining SOX Compliance: Best Practices to Mitigate Risk, Automate Compliance, and Reduce Costs
Read

That is all the resources we have on the subject of SOX. Try these other Tripwire resources:

Reducing Federal Systems Risk with the SANS 20 Critical Controls
Read
10 Steps for Early Incident Detection
Read
Needle in a Haystack? Getting to Attribution in Control Systems
Read
Continuous Monitoring: Responding to New Threats in More Complex IT Environments
Read
Security-In-Depth Using Integrated Risk-Conscious Controls
Read

To browse more white papers, visit the resource library.

SOX, GLBA and HIPAA: Multiple Regulations, One Compliance Solution
Watch
Automating SOX Compliance with Tripwire's Powerful IT Controls
Watch

That is all the resources we have on the subject of SOX. Try these other Tripwire resources:

10 Steps to Better Security Incident Detection
Watch
Demo: Prevent, Detect and Correct IT Issues in Your Critical Infrastructure
Watch
Extracting Business Intelligence from IT Security Data
Watch
Secure on Two Fronts: Increased Control to Protect Your Business
Watch

To browse more videos, visit the resource library.

SC Magazine Readers Designate Tripwire as a Finalist in 2012 Awards for Best Policy Management Solution
Tripwire, Inc., a leading global provider of IT security and compliance automation solutions, has been named a finalist in the Best Policy Management Solution category by the 2012 SC Magazin... Read
Tripwire Appoints Dwayne Melançon to Chief Technology Officer Role for Global Operations
Tripwire, Inc., a leading global provider of IT security and compliance solutions, has appointed Dwayne Melançon to the role of Chief Technology Officer, where he will play a critical... Read
Tripwire Granted U.S. Patents to Facilitate Innovative Management of Data Processing Environments
Tripwire Inc., the leading global provider of IT security and compliance automation solutions, today announced it has been granted U.S. Patent numbers 7,822,724 B2 and 7,765,460 B2 for chang... Read

To browse more, visit the company news section.