Public Company Accounting Reform and Investor Protection Act

Compliance Journal

Subscribe to Compliance Journal: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Compliance Journal: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

View General Session: ▸ Here Download Slide Deck: ▸ Here Are You Ready for GDPR (The EU General Data Protection Regulation)?? In his general session at 21st Cloud Expo, Greg Dumas, Calligo's Vice President and G.M. of US operations, discussed the new Global Data Protection Regulation and how Calligo can help business stay compliant in digitally globalized world. View General Session: ▸ Here Download Slide Deck: ▸ Here Speaker Bio Greg Dumas is Calligo's Vice President and G.M. of US operations. Calligo is an established service provider that provides an innovative platform for trusted cloud solutions. Calligo's customers are typically most concerned about GDPR compliance, application performance guarantees & data privacy. View General Session: ▸ Here Download Slide Deck: ▸ Here Greg has over 25 years of experience as an international sales, marketing & operations e... (more)

Avoiding Compliance Risk with Better Access Management | @CloudExpo #Cloud #Security #Compliance

Avoiding Compliance Risk with Better Access Management Networks have become large, complex entities that are increasingly difficult to manage and control. Security, audit, risk and compliance professionals know that their organizations rely on them for effective risk management, control and governance processes that are essential to the safety of their network environment. Yet compliance and security are more challenging than ever before as additional layers are added to this environment. One of the challenges lies in the fact that there is an ongoing, huge access gap in network security and compliance - and it has been residing within the environment for more than 20 years. This tool, known as the Secure Shell (SSH) protocol, grants privileged access to all types of production environments. A Problem Gaining Attention The problem is propagated by a lack of awareness... (more)

[session] Are You Ready for GDPR? | @CloudExpo @CalligoCloud #DX #Cloud #Compliance

Are You Ready for GDPR (The EU General Data Protection Regulation)?? In his general session at 21st Cloud Expo, Greg Dumas, Calligo's Vice President and G.M. of US operations, will go over the new Global Data Protection Regulation and how Calligo can help business stay compliant in digitally globalized world. Speaker Bio Greg Dumas is Calligo's Vice President and G.M. of US operations. Calligo is an established service provider that provides an innovative platform for trusted cloud solutions. Calligo's customers are typically most concerned about GDPR compliance, application performance guarantees & data privacy. Greg has over 25 years of experience as an international sales, marketing & operations executive. His background has focused primarily on virtualization and internet security products & services. Most recently he was with Attivo Networks, the leader in decep... (more)

Multi-Cloud Movement | @CloudExpo @VMware #DataCenter #Compliance #DigitalTransformation

Keeping Pace with the Multi-Cloud Movement A common misconception about the cloud is that one size fits all. Companies expecting to run all of their operations using one cloud solution or service must realize that doing so is akin to forcing the totality of their business functionality into a straightjacket. Unlocking the full potential of the cloud means embracing the multi-cloud future where businesses use their own cloud, and/or clouds from different vendors, to support separate functions or product groups. There is no single cloud solution ideal for all applications, and some applications might not fit the cloud at all. For example, certain applications have more stringent security or compliance requirements that require a private cloud or traditional on-premises deployment. For the foreseeable future, the majority of companies will maintain a hybrid cloud env... (more)

Flexera Software Announces InstallAnywhere 2012

Helping Application Producers and Enterprise IT Developers Migrate Their Apps to the Cloud and Virtual Environments New release enables multi-platform installation development from a single project file across physical, cloud, and other virtual environments Maidenhead, UK - October 16, 2012 Flexera Software, the leading provider of Application Usage Management solutions for application producers and enterprises, announced today the launch of InstallAnywhere 2012. This latest release streamlines the software deployment and installation process on-premises, in the cloud, and in enterprise virtual machine environments. "Customers access our products in increasingly complex environments - from physical, traditional environments to cloud and virtual environments - and we need to make it easy for them," said Paul French, Vice President, Strategy & Markets, Axway. "Flexera ... (more)

The HIPAA Final Rule and Staying Compliant in the Cloud

The HIPAA Omnibus Final Rule went into effect on March 26, 2013.  In order to stay compliant, the date for fulfilling the new rules is September 23, 2013, except for companies operating under existing “business associate agreements (BAA),” may be allowed an extension until September 23, 2014. As healthcare and patient data move to the cloud, HIPAA compliance issues follow.  With many vendors, consultants, internal and external IT departments at work, the question of who is responsible for compliance comes up quite often.  Not all organizations are equipped or experienced to meet the HIPAA compliance rules by themselves.  Due to the nature of the data and the privacy rules of patients, it is important to secure the data correctly the first time. HIPAA and the Cloud Do you have to build your own cloud HIPAA compliance solutions from scratch?  The short answer is no. ... (more)

When Compliance Comes Down to Security | @CloudExpo #Cloud #Security

In the business world, it's hard to throw a rock without hitting a compliance requirement. All must be obeyed, but some call for a high level of control and auditability. Governing bodies are exerting their authority like never before, increasing the number of auditors and handing out heavy fines - sometimes as much as $1 million. This has become the new norm, and it isn't likely to turn around any time soon. It's important, then, to be aware of the primary threats that could undermine compliance efforts. The top three such issues are discussed below. The Challenges of SOX Public companies in the U.S. as well as foreign companies listed on U.S. exchanges are required by Sarbanes-Oxley (SOX) to assess their internal controls, have that assessment validated by an external auditor and report the assessment to the SEC. Information security professionals need to ensure t... (more)

[session] Enabling #FinTech | @CloudExpo @CloudRaxak #AI #ML #Blockchain

Enabling FinTechs for Success through Business-Driven Cloud Security FinTechs use the cloud to operate at the speed and scale of digital financial activity, but are often hindered by the complexity of managing security and compliance in the cloud. In his session at 20th Cloud Expo, Sesh Murthy, co-founder and CTO of Cloud Raxak, will show FinTechs how proactive and automated cloud security enables FinTechs to leverage the cloud to achieve their business goals. Through business-driven cloud security, FinTechs can speed time-to-market, diminish risk and costs, maintain continuous compliance, and set themselves up for success. Speaker Bio Sesh Murthy is the Co-Founder and CTO of Cloud Raxak. Before Cloud Raxak, he was the Vice President of Cloud Innovation at IBM Global Services. He has 29 years of experience in creating value for customers in cloud and technology se... (more)

Sarbanes-Oxley Will Change Your Life

This column may require a little patience on your part, but I think it will be worth it in the end. Let's start with a simple premise: within a year, nearly everyone reading these words will be deeply impacted by Sarbanes-Oxley, yet many have never heard of it. The purpose of this note is to offer you a preview of what's to come. In other words, a wake-up call. First of all, who or what is Sarbanes-Oxley? Simply put, the Sarbanes-Oxley Act (SOA) is the federal law that was put in place last year in response to the scandals at Enron, MCI, and other large public corporations. The law contains a wide variety of provisions around improving corporate ethical behavior, including assurances that companies' financial statements accurately reflect the state of their business. And it puts teeth into those provisions with heavy fines and prison for senior executives if their ... (more)

SAP Business One & Sarbanes-Oxley Act

SAP Business One on Ulitzer The information below is excerpted from a Frequently Asked Questions document by SAP. The information below is designed to provide an overview of SAP Business One and the Sarbanes-Oxley Act. Companies running SAP Business One and needing to comply with the act will find information about how they can utilize the software to comply with requirements. Sarbanes-Oxley Act - Background On July 30, 2002, President Bush signed into law the U.S. Public Company Accounting Reform and Investor Protection Act of 2002, more commonly known as the Sarbanes-Oxley Act. The act, drafted by Sen. Paul Sarbanes and Rep. Michael Oxley, was created in response to a number of major corporate and accounting scandals involving a list of prominent companies including Enron and WorldCom. The act was designed to enforce corporate accountability and responsibility and... (more)

A Service Auditor’s Letter to the Cloud

SAS 70 Solutions Session at Cloud Expo Dear Cloud: Hello! Can you hear me? I know you can. Yes, yes...no one likes an auditor and I am even worse. I am that CPA who spent the last decade working in information security, both as a security consultant and as someone who managed the product lines of a global managed services business. So whether or not you want to open up those big APIs of yours and listen to me, this is what I have to say... I know who you are and where you live. Your name is "the cloud." I will admit that you are the catchiest IT buzzword since Java. Although you claim to live in the gated community called Web 2.0, I know better. You actually live in an unmarked windowless datacenter, with complex networks, servers, applications, policies, contracts, and worst of all, people! You are unique, just like everyone else. Your predecessors, such as the A... (more)