SOX is Hell - Storage Technology Magazine

SOX is Hell

Think complying with Sarbanes-Oxley (SOX) will be easy? Think again. A user preparing for a SOX audit (who for obvious reasons requested anonymity) reports that complying with the regulation is a time-consuming, thankless task.

"This has been an unbelievably frustrating ride," he says. "We're making everything up as we go along, because there's no template to follow." Auditors are no help. "They tell us, 'We'll know it when we see it.' It's like trying to please the king."

The work itself, providing proof and documentation of compliance, is time-consuming "administrivia." "I'd much rather be running storage infrastructure; it's a lot more fun."

Forget about hiring consultants. Even if you can find one, "the big accounting companies are feeling their way around in the dark just like everyone else. A lot of my colleagues have hired consultants, but they're no further along than us."

What happens if you get it wrong? If the audit uncovers a material weakness, you must print a notice in the annual report--no one wants that. Furthermore, "if you're going to tell your CIO that it's OK to sign off on the IT portion of Sarbanes-Oxley, it'd better be right. If you fail, you pay with your job."

Requires Free Membership to View

Login

When you register for SearchStorage.com, you’ll also receive targeted emails from my team of award-winning editorial writers. Our goal is to keep you informed on the hottest topics, the latest news and the biggest challenges you face as a storage professional today.

Rich Castagna, Editorial Director

By submitting your registration information to SearchStorage.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchStorage.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Dig Deeper

People who read this also read...

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- litigation hold (preservation orders or hold orders)

Show me more

This was first published in August 2004

More from Related TechTarget Sites

Data Backup
Disaster Recovery
SMB Storage
Storage Channel
Virtual Storage
Storage UK
Cloud Storage

searchDataBackup
- Microsoft backup challenges, solutions, and best practices
  
  Whether you’re new to Microsoft backup or just want to learn ways to improve your processes, you’ll want to check out our latest Microsoft backup content.
- Symantec backup applications get makeovers for speed, VMs
  
  Symantec enhances backup applications NetBackup and Backup Exec: adding speed, search and NetApp integration to NetBackup and better virtual backup to Backup Exec.
- CommVault addresses mobile and laptop data backup, 'big data' backup
  
  CommVault enhances Simpana 9 with remote laptop data backup and a better way of backing up ‘big data’ repositories.
searchDisasterRecovery
- Toigo: Keep tape in your disaster recovery policy
  
  Disk backup and remote replication have become commonplace, but don't count tape out for DR. Learn why Jon Toigo is so keen on keeping tape in your disaster recovery policy.
- Why choosing a data protection solution is critical
  
  Find out why choosing a data protection solution is so important in this Expert Response from Paul Kirvan.
- Risk assessments identify external and internal risks
  
  A risk assessment must identify external and internal risks and threats to your organization. Paul Kirvan discusses this important issue in his Expert Response.
searchSMBStorage
- Top five SMB backup tips of 2011
  
  The editors of SearchSMBStorage.com have compiled this list of five tips to help you develop a data backup strategy that’s right for your needs.
- Top five tips on data management tools for small to medium-sized businesses
  
  SMBs face unique challenges when it comes to storage management. Check out our five favorite tips on data management tools from the past year.
- A look at storage in Windows Server 8
  
  Frequent TechTarget contributor and Microsoft MVP Brien Posey introduces some of the storage features and changes in Windows Server 8 in this video.
searchStorageChannel
- Fusion-io braces for competition from EMC’s VFCache server SSD product
  
  Headlines: Fusion-io’s early lock on the server SSD market is in jeopardy now that EMC is shipping its VFCache product and planning a flash appliance.
- VDI sizing and disk array controller requirements
  
  Find out how to help customers estimate their disk array controller needs around capacity and performance as part of a virtual desktop infrastructure (VDI) sizing exercise.
- AWS Storage Gateway creates ‘co-opetition’ with cloud appliances
  
  Headlines: Amazon’s AWS Storage Gateway may be creating 'co-opetition' with other cloud appliances, but appears to be lacking in enterprise features.
Virtual Storage
- Managing storage in a Citrix environment
  
  In this podcast, find out how Citrix XenServer storage management functionality compares with that of VMware and Hyper-V environments.
- Virtual storage appliances drill-down: Optimizing VSAs
  
  Read about one type of virtual storage appliance, the optimizing VSA, which improve the performance of storage access either via large caching mechanisms or via customized file systems.
- How to implement storage virtualization technology at the server level
  
  Learn about storage virtualization technology at the server-, or host, level, including info on products from Virsto, VMware, DataCore, LeftHand and FalconStor.
searchStorageUK
- Managing storage in a Citrix environment
  
  In this podcast, find out how Citrix XenServer storage management functionality compares with that of VMware and Hyper-V environments.
- Toigo: Keep tape in your disaster recovery policy
  
  Disk backup and remote replication have become commonplace, but don't count tape out for DR. Learn why Jon Toigo is so keen on keeping tape in your disaster recovery policy.
- Midrange storage SAN market analysis
  
  Midrange storage has matured into one encompassing fully featured SANs with easy-to-use management interfaces for larger SMBs. But where is that market heading now?
CloudStorage
- Cloud gateways: Advantages and vendor offerings
  
  Gene Ruth, research director at Gartner, discusses the strengths of cloud gateways, the latest AWS gateway news and what specs to look for when shopping for a gateway appliance.
- Archiving in the cloud: Asking all the right questions
  
  Are you considering archiving in the cloud? Learn the crucial questions to ask a cloud storage provider and how USC has implemented a massive cloud archive.
- AWS Storage Gateway creates ‘co-opetition’ with cloud appliances
  
  Amazon’s AWS Storage Gateway may be creating 'co-opetition' with other cloud appliances, but appears to be lacking in enterprise features.

All Rights Reserved, Copyright 2000 - 2012, TechTarget