Publicly Traded Companies must perform user access reviews as outlined in the Sarbanes-Oxley Act of 2002 (SOX).
SecurEnds product directly supports SOX requirements for USER ACCESS REVIEWS and compliance auditing. By streamlining the management of user identities and access rights, automating enforcement of SoD policies, and automating time-consuming audits and reports, our product can help support strong security policies across your enterprise, while reducing the overall cost of compliance.
Recently, a Fortune 500 company over 35000 employees and 2400 managers achieved its Entitlement review for SOX audits target in 60 days using our product.
SOX User Access Review Controls
Section 404 of the Sarbanes-Oxley Act of 2002 (SOX) states: “Registered accounting firm shall, in the same report, attest to and report on the assessment on the effectiveness of the internal control structure and procedures for financial reporting” (Sarbanes-Oxley Act of 2002, 2002).
By requiring accounting firms to assess and report on a public company’s internal control for financial reporting, it affirms the integrity of the financial reports. Since financial data stored in the company’s IT systems, by ensuring the security of these IT systems, companies can attest to the integrity of their financial reports.
Information Technology can enable Identity Governance and Access Certification to meet SOX compliance. Identity Governance and methods provide direct support for the SOX requirements for compliance auditing.
Let us help you achieve your SOX compliance goals. Set up a demo and see how our product is used in 9 different industries across 5 countries for achieving regulatory and compliance goals.
Solution: SecurEnds Credential Entitlement Management
· Automates user access and entitlement reviews.
· Match accounts across applications to create an Identity database.
· Identify and connect to disconnected applications including CSV file upload and map entitlements for user access reviews.
· Establish ownership for mapping users, custom entitlement for custom and disconnected applications.
· Set up continuous access review campaigns, notifications, escalations, and real-time status on the access certification.
· Simplify Audit and Compliance reporting needed during the annual access reviews.
