Compliance software tools for Sarbanes Oxley

Home >Sarbanes Oxley >

There are a number of compliance software tools for Sarbanes Oxley. They are a mixture of Sarbanes Oxley learning tools, whether on line or off line, or auditing and implementation tools.

These products often offer on line courses to help company's comply with different sections of the Sarbanes Oxley Act as well as Basel II and the IFRS. The main SOX sections covered are sections 302 Periodic reports in 302 oxley sarbanes section and 402, 404 Internal Controls of Act 404 Oxley sarbanes of the act.

Companies providing Sarbanes Oxley compliance software learning tools

Paisley Consulting is a provider of business accountability solutions.

They have two flagsip programs, AutoAudit(R) and Risk Navigator(TM).Risk Navigator has specific functionality to help meet Sarbanes-Oxley 302 and 404 needs. Risk Navigator has integration points for document management, control monitoring, business intelligence and internal audit. This integrated compliance architecture claims to reduces the time and effort involved in gathering and reporting on compliance and risk management data.

Paisley consulting and SmartPros jointly announced the launch of The Collaborative Assurance & Risk Design(R) (CARD) e-Learning center.

From their press release...

The CARD(R) e-Learning center provides quick, easy access to cost-effective online training to help organizations comply with the requirements imposed by Sarbanes-Oxley, Basel II, operational risk management and other corporate governance and compliance measures. Three Sarbanes-Oxley courses are available immediately to provide training on how to cost-effectively comply with sections 302 and 404 of the Act. Also available are two modules on COSO enterprise risk management(ERM) and risk and control assessment techniques. These courses are the first in a series of broader operational risk offerings planned for roll out, including modules on grading control deficiencies for Sarbanes-Oxley and Basel operational risk management and more.

"Recent changes in the regulatory environment have created a growing need in the marketplace for Sarbanes-Oxley and other operational risk training that can be deployed on a 'just-in-time' basis," said Tim Leech, Principal Consultant and Chief Methodology Officer, Paisley Consulting. "As the industry's first software provider to offer integrated SOX methodology and software training, we have further solidified our commitment to providing full service solutions and services to our customers."

OpenPages SOX Express

OpenPages Sarbanes-Oxley Express (SOX Express) is an enterprise compliance management solution that reduces the time and resource costs associated with ongoing compliance for Sections 302 and 404 of the Sarbanes-Oxley Act. SOX Express claims to shorten time-to-compliance and to expedite compliance audits for section 404.

For section 302, Periodic reports in 302 oxley sarbanes section SOX Express allowsindividual process owners first provide sub-certification for their functional areas. Sub-certifications are then “rolled-up” throughout the organization and approved by managers at each business level. SOX Express then presents management with a final certification report for attestation from corporate officers.

Association of Certified Fraud Examiners (ACFE) is a leading provider of anti-fraud training and education

The ACFE, the world's premier provider of anti-fraud training and education, has over 33,000 members, sponsors more than 120 chapters worldwide and provides anti-fraud educational materials to over 100 universities. Certified Fraud Examiners (CFEs) on six continents have investigated more than 1 million suspected cases of civil and criminal fraud.

MetricStream produces solutions for Enterprise-wide Quality and Compliance Management for global corporations.

MetricStream solutions are used by leading corporations in diverse industries such as Automotive, Food, Pharmaceuticals, Manufacturing and Electronics to manage their quality processes, regulatory and industry-mandated compliance and corporate governance initiatives. Key MetricStream customers include Pfizer, Fairchild Semiconductor, Hitachi Computer Products (America), Albany Molecular Research (AMRI), TaylorMade-Adidas Golf, Boston Market, Cannon-ITT Industries and Dolby Laboratories. MetricStream is headquartered in Redwood Shores, California.

Vigilar has augmented its information security consulting services has added SOX training classes to its broad range of information security courses that it offers.

The week-long Sarbanes-Oxley Boot Camp looks at the different aspects of the SOX and its relevance to the attendee's job function, the organization and the organization's industry. Delivered through a series of simulation workshop exercises, Vigilar's SOX training program thoroughly examines the compliance responsibilities of finance, accounting, IT, legal and audit professionals and executives. The course concludes with an optional but recommended Sarbanes-Oxley Group SOXBase-level exam required for Sarbanes Oxley certification (CSOX). Prerequisite for the class is a professional level background in finance, accounting, IT, legal or auditing. Other Informations on Compliance Delivery Auditing Tools

Virtually all companies need to deploy effective compliance technologies in order to achieve and maintain compliance without incurring intolerable costs.

Technologies for physical security, intrusion detection, configuration management, storage, controls documentation, business process management, identity management, and identity auditing. Identity management and identity auditing are critical.

Sustaining Sarbanes Oxley compliance is time consuming and expensive.

Many companies delayed or even cancelled important IT projects in favor of compliance projects.

For successful compliant oxley sarbanes software user should have only those permissions required to do his job.

Employees who resign or are fired must have their accounts deleted removedimmediately.

An IT staffer who writes code for a given system must not also be an administrator of that system.

Sun Microsystems produce mant systems which are high on compliance oxley sarbanes software.

IT must provide assurance that mission critical software applications are not exposed to potential failure due to human error, staff turnover or sabotage

Identity management software provides a complete and centralized view of access privileges.

An identity based approach to Sarbanes Oxley compliance moves a company from relying on manual, fragmented processes to maintaining a continuous, optimized state of compliance.

Fortune 1000 companies will spend as much as2.5 billion this year in compliance related projects.

These companies are going to end up changing software packages, and that is going to be a huge effort to migrate from one software package to another. So choosing the right software package up front can save you money in the long run, but I dont think that youre going to find anybody thats out of compliance because they chose the wrong software package.

The majority of Sarbanes Oxley work will be done in 2004 2005.

After that its going to be pretty much a maintenance effort and to the extent companies go public or to the extent they grow to the point where they feel like they need a new software package.