Re: SOX Compliance and assesment

From: Cory Foy (Cory.Foy_at_mobilehwy.com)
Date: 01/17/05

Next message: dave kleiman: "RE: Building a Company Computer Use/Security Policy"

Previous message: Meidinger Chris: "RE: Building a Company Computer Use/Security Policy"
In reply to: mr.happy: "Re: SOX Compliance and assesment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 17 Jan 2005 13:54:30 -0500
To: security-basics@securityfocus.com

mr.happy wrote:
> We worked with Deloitte. Although they did understand our
> infrastructure, I did not have a very confident feeling of the SOX
> knowledge of the consultants. Too many times they didn't know the answer
> or assumed(?) it was a certain way.

Sounds just like what we went through (and they are still going through)
at my previous organization with HIPAA. Too many consultants being paid
way too much money who don't understand the things they need to in order
to implement things the correct way.

Cory

Next message: dave kleiman: "RE: Building a Company Computer Use/Security Policy"

Previous message: Meidinger Chris: "RE: Building a Company Computer Use/Security Policy"
In reply to: mr.happy: "Re: SOX Compliance and assesment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]