Section 404 of the Sarbanes-Oxley Act of 2002 holds CEOs and CFOs of publicly held companies responsible for the accuracy of financial statements and financial information issued by their companies and for explaining their internal financial control procedures. Tripwire solutions integrate configuration auditing practices into your IT operations, verifying and reinforcing controls to demonstrate Sarbanes-Oxley 404 compliance.

An Ironclad Defense: Detective Control

Tripwire provides what auditors call a detective control. It delivers the hard evidence of IT configuration audit and control that auditors want. Tripwire gives you:

• Automated configuration control that isn't susceptible to human error or lapses in judgment
• Broad infrastructure coverage of changes on servers, workstations and network devices, including changes made both manually or by automated tools
• Independent evidence of change through perfect segregation of duties - the person or tool that made the change is not used to validate the change