Sarbanes Oxley 2022 Compliance Resource Kit: ITIL and “Best

Dublin, Nov. 18, 2022 (GLOBE NEWSWIRE) — The “Sarbanes Oxley Compliance Resource Kit” report has been added to from offer.

The SOX kit contains all the tools needed to comply with Sarbanes-Oxley legislation. This toolkit has been used successfully by over 500 publicly traded companies.

ITIL and “Best Practices” are no longer sufficient to comply with Sarbanes Oxley and COBIT requirements. There are many products on the market that claim they can track changes, can control/manage changes, or can audit product usage and system changes.

Almost all Change Management products are either “Electronic Paper” (i.e. they cannot prevent unauthorized changes) or they react after the event based on cyclical comparisons of the different data sets. The time between cyclic comparisons is an open door for anyone trying to manipulate the systems, and paper systems offer no protection.

Sarbanes-Oxley Section 404 requires that:

  • Companies have an enterprise-wide security policy;
  • Enterprises have enterprise-wide data classification for security, risk, and business impact;
  • Companies have standards and procedures related to security;
  • Companies have formal security-based documentation, auditing, and testing;
  • The company applies segregation of duties; and
  • Companies have policies and procedures in place for change management, help desk, service requests, and changes to applications, policies, and procedures.

The Sarbanes Oxley Compliance Resource Kit includes the following components:

  • Safety Manual Template
  • Sensitive Information Policy
  • Disaster recovery model
  • Safety Manual Template
  • Threat and Vulnerability Assessment Tool
  • Business and IT Impact Questionnaire
  • Practical guide to IT outsourcing
  • Job Description for Chief Security Officer

The tools provided in these kits not only meet the needs of Sarbanes-Oxley, COBIT, and ISO, but they also provide a means to comply with IT governance requirements.

For more information on this report, visit


Comments are closed.