One brand, one Web site! DM Review is now the home of all the content you're used to at BIReview.com and much more. If you are registered at BIReview.com, you're already registered at DM Review. If not, take just a moment to sign up for all the free services we have for you at the new DMReview.com.
Compliance
Oracle Privacy Security Auditing: Includes Federal Law Compliance with HIPAA, Sarbanes Oxley & The Gramm Leach Bliley Act GLB
Sharing secrets for the effective creation of auditing mechanisms for Health/Insurance Portability and Accountability Act of 1996 (HIPAA) compliant Oracle systems, this book demonstrates how the HIPAA framework provides complete security access and auditing for Oracle database information. Complete details for using Oracle auditing features, including auditing from Oracle redo logs, using system-level triggers, and using Oracle9i fine-grained auditing (FGA) for auditing of the retrieval of sensitive information, are provided. Examples from all areas of auditing are covered and include working scripts and code snippets. Also discussed are the use of the Oracle9i LogMiner to retrieve audits of database updates and how to implement all Oracle system-level triggers for auditing, including DDL triggers, server error triggers, and login and logoff triggers.
Manager's Guide to the Sarbanes-Oxley Act: Improving Internal Controls to Prevent Fraud
Designed to be "a cure for the Sarbanes-Oxley headache and common fraud," Manager's Guide to the Sarbanes-Oxley Act introduces the groundbreaking and practical "Control Smart" approach that not only meets the requirements of Sarbanes-Oxley, but also alerts you if operational controls stop working or are otherwise compromised. This simple template helps you identify and understand operational threats, and guides you through a comprehensive evaluation of your system of internal controls to mitigate these risks.
Information Security Harmonisation - Classification of Global Guidance
Information security standards-COBIT, ITIL, NIST and SSE-CMM, to name a few - may sound like alphabet soup, but a new book published by the IT Governance Institute provides a road map to the standards, clarifying their use and benefits. Based on a global survey of 5,000 Certified Information Security Managers (CISMs), Information Security Harmonisation-Classification of Global Guidance examines 17 internationally accepted security guidance based on 12 criteria. "This in-depth evaluation helps business and information security managers identify the security guidance that is most appropriate for their organizations or most helpful for improving their own skills and knowledge," said Leslie Macartney, CISA, CISM, the book's author and chair of the CISM Certification Board of the Information Systems Audit and Control Association (ISACA).
The IT Strategy Management Process
The way medium and large companies operate has changed considerably in recent years. Industry topics such as agility, Sarbanes-Oxley, governance, risk management, knowledge management, best practices, business intelligence, quality, ITIL(R) and others top corporate agendas. Each of these topics affect strategy and, in turn, guides and directs implementation instructions such as standards and best practices. However, what about managing the implementation instructions to the strategies? What about compliance and the health of the strategies?
The IT Strategy Management Process addresses these vital issues in a simple structured form. The process consists of a central repository through which strategies, implementation instructions and best practices are stored and managed. Document owners are driven to keep their papers current. Target audiences are driven for compliance with the strategies and for the use of best practices. Corrective actions are triggered as issues emerge. At any
Establishing a Compliance Offfice for Sarbanes-Oxley, Other Laws...
Establishing a Compliance Office for Sarbanes-Oxley, Other Laws and Corporate Governance - Functional Charter & Responsibilites
Publicly-owned companies are now subject to several laws and regulatory mandates. The most encompassing recent law that companies must comply with is the Sarbanes-Oxley Act of 2002. Now that the first year Sarbanes-Oxley compliance has been met by large companies, they must begin the vital task of organizing for "ongoing and sustainable" compliance to provide strong leadership and enforcement of compliance across all regulations that impact their company.
(excerpt from Amazon.com)
Risk Management Solutions for Sarbanes-Oxley Section 404 IT Compliance
If your company does business on the Internet, your risks are growing exponentially. Worms, viruses, cracker attacks, mechanical failures, and natural disasters create a climate that compromises performance as well as security. Traditional solutions are too limited to address these risks. You need a strategy designed for today, and this book will help you build one.
How to Comply with Sarbanes-Oxley Section 404: Assessing the Effectiveness of In
This practical guide offers helpful guidance on how to go about to submitting to the SEC a company's annual assessment of the effectives of their internal control. Complete with practice aids-including forms, checklists, illustrations, diagrams, and tables-this comprehensive book provides a step-by-step approach for engagement performance and practical guidance on how an entity should test and evaluate its internal controls.
Security Controls for Sarbanes-Oxley Section 404 IT Compliance
The Sarbanes-Oxley Act requires public companies to implement internal controls over financial reporting, operations, and assets-all of which depend heavily on installing or improving information security technology Offers an in-depth look at why a network must be set up with certain authentication computer science protocols (rules for computers to talk to one another) that guarantee security Addresses the critical concepts and skills necessary to design and create a system that integrates identity management, meta-directories, identity provisioning, authentication, and access control
Joy of SOX: Why SOX and SOA May be the Best Thing that Ever Happened to You
The Sarbanes-Oxley Act (SOX) was passed in 2002 in response to a series of high-profile corporate scandals and requires that public companies implement internal controls over financial reporting, operations, and assets; these controls depend heavily on installing or improving information technology and business methods Written by one of the most visible personalities on the tech-biz side of the SOX discussion, this highly readable, engaging book provides a clear road map for integrating SOX compliance into the fabric of everyday IT infrastructure and business practice.
Strategy, Organizational Effectiveness And Performance Management: From Basics T
Designing effective organizations is a key challenge for companies in today's fast-moving business world. The late 1990s and early 2000s have seen multiple organization management innovations applied successfully such as business process outsourcing, shared services and offshoring. Advanced techniques such as balanced scorecards and integrated planning systems have become effective enablers for strategy execution. This book spans a framework from strategy definition and designing strategy-compliant organizations to monitoring effective implementation and performance management.
