The Sarbanes-Oxley Act of 2002 (SOX), specifically Section 404, requires an outside auditor to attest to the integrity of your financial controls. Since all financial controls—including transaction handling, accounting ledgers, and other financial systems, as well as links with third party providers such as corporate banks, trading exchanges, and clearing systems—are computer-based, your IT infrastructure is the foundation for recording and reporting your financial activity. Lack of control over IT security would suggest a lack of control over your organization’s financial reports, a direct violation of Sarbanes-Oxley Section 404.

Peace of mind starts here.

The Sarbanes-Oxley Act has created a tangle of burdens and risks for senior management of public companies. Achieving compliance without the proper tools and experience can be complex and costly—stretching your IT resources thin. And the risks of non-compliance are huge for those responsible for certifying the accuracy of financial data. Our considerable experience and expertise can help bring you into compliance. Our capabilities include the following elements:

• Business Impact Assessment

• Vulnerability Assessment
• Penetration Testing
• Password Cracking
• Wireless Vulnerability Assessment
• Bluetooth Vulnerability Assessment
• Dial-In/RAS Security Testing
• Virtual Private Network Assessment
• Network Architecture Assessment

• Social Engineering
• Security Policy Review
• Physical Security Assessment
• Web Application Assessment
• System Security Review
• Firewall Assessment
• Emergency Response Review
• Intrusion Detection/Prevention Testing
• Data Access and Control Analysis

Our approach is flexible and comprehensive. And driven by your immediate priorities, your planned improvements, your longer term strategic goals and your timetable. Call us and we'll make certain you're in control over the basic security tenants—confidentiality, integrity, and availability—and keep you in compliance.