Monday, July 11, 2005

Report: Sarbanes-Oxley could threaten security

Steve Ranger writes in C|Net News:

The multimillion-dollar cost of complying with the Sarbanes-Oxley Act is diverting spending away from protecting against other security threats, according to a new report.

The Information Security Forum, an international security association, said Monday that it calculates that many of its members expect to spend more than $10 million on information security controls to comply with regulations laid down by Sarbanes-Oxley.

U.S. members of the ISF include MetLife, CitiGroup, Electronic Data Systems and Safeway.

ISF consultant Andy Jones said that though SOX was designed to improve corporate governance and accountability, it has proved difficult to interpret for information security professionals.

0 Comments:

Post a Comment

<< Home