SOX is Hell

Ezine

This article can also be found in the Premium Editorial Download "Storage magazine: Adding low-cost tiers to conserve storage costs."

Download it now to read this article plus other related content.

Think complying with Sarbanes-Oxley (SOX) will be easy? Think again. A user preparing for a SOX audit (who for obvious reasons requested anonymity) reports that complying with the regulation is a time-consuming, thankless task.

"This has been an unbelievably frustrating ride," he says. "We're making everything up as we go along, because there's no template to follow." Auditors are no help. "They tell us, 'We'll know it when we see it.' It's like trying to please the king."

The work itself, providing proof and documentation of compliance, is time-consuming "administrivia." "I'd much rather be running storage infrastructure; it's a lot more fun."

Forget about hiring consultants. Even if you can find one, "the big accounting companies are feeling their way around in the dark just like everyone else. A lot of my colleagues have hired consultants, but they're no further along than us."

What happens if you get it wrong? If the audit uncovers a material weakness, you must print a notice in the annual report--no one wants that. Furthermore, "if you're going to tell your CIO that it's OK to sign off on the IT portion of Sarbanes-Oxley, it'd better be right. If you fail, you pay with your job."

Requires Free Membership to View

Login

By submitting you agree to receive email communications from
TechTarget and its partners. Privacy Policy Terms of Use.

More News and Tutorials

Articles

Related glossary terms

Terms for Whatis.com - the technology online dictionary
- discoverability
- litigation hold (preservation orders or hold orders)

This was first published in August 2004

Join the conversationComment

Share

Comments

Results

Contribute to the conversation

All fields are required. Comments will appear at the bottom of the article.

More from Related TechTarget Sites

Solid State Storage
Virtual Storage
Cloud Storage
Disaster Recovery
Data Backup
Storage UK
Storage Channel

searchSolidStateStorage
- The top three use cases for PCIe SSD
  
  Learn more about the most common applications of PCIe solid-state cards today in this Expert Answer from independent storage expert Marc Staimer.
- Laptop SSD applications and monitoring
  
  Learn what applications benefit from laptop SSDs and what tools are available to monitor wear on these drives in this Expert Answer from Marc Staimer.
- STec CEO: Flash enables storage transformation
  
  STec CEO Mark Moshayedi discusses why he thinks flash will prompt enterprises to move from refrigerator-box SANs to custom-built solid-state systems.
Virtual Storage
- Startup CloudFounders builds open storage for VMs
  
  CloudFounders promises an open storage version of software-defined storage that supports OpenStack, Amazon S3 and VMware.
- 10 ways to improve virtual server storage
  
  Virtual server storage operations can have a profound effect on the storage network. Here are 10 ways to help ensure that your storage yields its best I/O for the VMs it supports.
- VMware market share is high in a small pool of virtualization
  
  Storage expert Jon Toigo explains how VMware is the market leader, and why virtualization growth statistics seem more impactful than they truly are.
CloudStorage
- NetApp, Equinix offer private storage for public cloud
  
  NetApp Private Storage for AWS connects NetApp private storage systems hosted in Equinix data centers to Amazon public clouds.
- Mezeo beefs up software for cloud building, online file collaboration
  
  Mezeo Software enables building public storage clouds on Amazon S3 and OpenStack storage, and strengthens online file-collaboration management.
- Cloud gateways morph into cloud controllers market
  
  After the addition of encryption, clones and deduplication capabilities, cloud storage controllers are the new cloud gateways.
searchDisasterRecovery
- Your data protection plan must consider latency in WAN-based replication
  
  In this Storage Decisions video, Jon Toigo highlights issues IT pros must address in their data protection plan when using WAN-based replication.
- Improving business continuity plan exercises
  
  Planning and conducting business continuity (BC) drills is one of the most important activities in a business continuity program.
- Evaluating BC/DR program performance
  
  Business continuity and disaster recovery are not "set-it-and-forget-it" activities. Paul Kirvan outlines how to evaluate a BC/DR program in this tip.
searchDataBackup
- Enterprise backup software avoids storage sales slump
  
  While storage vendors reported slow sales at start of 2013, Symantec and CommVault had success with enterprise backup software.
- Disk can help with backup tape rotation strategy
  
  Backup expert George Crump explains how to use disk to get the most out of your backup tape rotation strategy.
- How cloud archiving services compare
  
  Backup expert George Crump discusses the issues involved in picking a cloud archiving service for your organization.
searchStorageUK
- Dell cloud storage plans remain hazy
  
  News of a Nirvanix partnership filled in some details about Dell's cloud storage strategy, but the company still treats its cloud plans as a secret.
- Storage Radio: Riverbed Whitewater appliance chases enterprise
  
  In our latest Storage Radio podcast, SearchStorage.com editors discuss the Riverbed Whitewater cloud data backup appliance for enterprise backups.
- Finding data deduplication solutions for DR
  
  Deduplication is an important strategy for disaster recovery. Learn more about data dedupe solutions in this expert tip by Paul Kirvan.
searchStorageChannel
- Hitachi Data Systems Partner Program Checklist
  
  Learn the benefits of becoming a Hitachi Data Systems reseller partner with our Partner Program Checklist.
- Yosemite Technologies Partner Program Checklist
  
  Learn the benefits of becoming a Yosemite Technologies reseller partner with our Partner Program Checklist.
- CommVault, Inc. Partner Program
  
  Learn about data management software vendor CommVault, Inc.'s partner program in this standardized checklist.

All Rights Reserved,Copyright 2000 - 2013, TechTarget