The course is tailored to meet the specific needs and is presented in clear terms using analogies, examples and case studies. The entire course will be in English.
Course synopsis
The training is composed of the following subjects:
| The Need | The Sarbanes-Oxley Act of 2002: an Overview and Key Sections | SOX and Security Monitoring & SOX Testing |
| Companies and employees Affected | The players: SEC, PCAOB | Records Retention |
| Effective Dates | IT Security | Real-time Disclosure |
| Meeting the Information Security Requirements of SOX | SOX and Risk Assessments | European Answer to SOX |
| Internal and IT Controls and Sarbanes Oxley Act Relevance | Computer Forensics Investigation and Proactive Strategies | Integrating Sox IT security with GLBA, HIPAA and other regulations |
| Business Intelligence | Business Continuity and Disaster Recovery | The Vendors and the Sox Industry |
| COSO - the framework on controls for financial processes | COBIT - the framework that focuses on IT | Cost |
| The Project and the Project Management | Program Development and Program Change | Continuous Compliance 2005 and Beyond |
| Computer Operations and Access to Programs and Data | Reports used to Validate SOX Compliant IT Infrastructure | |
| Reporting Weaknesses and Deficiencies | Documentation Issues |
Target audience
CIO's, IT and Information Security Directors, Managers and Professionals. Chief Risk and Compliance Officers. IT and Security Process Owners.