The LogLogic® Compliance Suite - Sarbanes-Oxley Edition Overview
The LogLogic® Compliance Suite - Sarbanes-Oxley Edition delivers automated process validation, reporting and alerts based on infrastructure data to evidence and enforce business and IT policies related to compliance. By automating compliance reporting and alerting based on critical infrastructure data collected and stored by TIBCO LogLogic’s appliances, the TIBCO LogLogic Compliance Suite reduces the complexity and resource requirements for implementing control frameworks like COBIT to successfully meet SOX and other regulations.
TIBCO LogLogic’s Compliance Suite:
- Automates compliance activities and dramatically improves audit accuracy.
- Reduces the time to mitigate the risk factor.
- Allows organizations to use infrastructure data to provide evidence of and enforce IT controls.
- Provides industry-leading reporting depth and breadth, including real-time reporting and alerting on COBIT for SOX compliance.
- Delivers approximately 520 out-of-the-box Compliance Reports and 170 out-of-the-box Alerts with executive-level views.
- Enables customization of any Compliance Report to map reports against your company’s policies.
- Focuses on compliance with Section 404 of the SOX Act, which establishes the need for internal controls based on a recognized control framework.
To create the Compliance Suite, TIBCO identified a number of COBIT control objectives and mapped the general control principles with the functionality provided by TIBCO LogLogic reports and alerts. As a result, the Compliance Suite provides reports and alerts that are directly aligned with specific COBIT objectives.
The SOX act of 2002 sets a standard for corporate accountability, requiring the definition and enforcement of internal IT controls and processes. It applies to all public companies. The Sarbanes-Oxley Act recommends companies regularly audit log files and keep a record of audit logs for up to seven years. SOX specifically requires companies to “audit unauthorized access, misuse and fraud, to ensure the accuracy of corporate financial and business information,” and to “maintain financial records for seven years.” |