Security and Sarbanes-Oxley

Author: Edward Hurley Published Feb. 5, 2011 from SearchSecurity

This paper provides and overview of the Sarbanes-Oxley mandate. Sarbanes-Oxley doesn't mandate specific internal controls such as strong authentication or the use of encryption. "But if someone can easily get in your system because you have a four-character password, for me, that is a no-brainer [as a sign of noncompliance]," Saidman said.