Abstract
There are many approaches to building a satisfactory reference framework when considering how best to manage compliance. A framework that is gaining wide acceptance is the ISO 17799 standard.1 Although its focus is on information security, it has a number of synergies with the concerns raised by the Sarbanes-Oxley Act:
-
It stresses the importance of documenting compliance activities.
-
It has an emphasis on the confidentiality, integrity, and availability of information.
-
It stresses a structured approach to compliance, based on senior management authorization and a comprehensive acceptance of the need for all staff to be aware of and involved in the compliance effort.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Copyright information
© 2007 Terence Sheppey and Ross McGill
About this chapter
Cite this chapter
Sheppey, T., McGill, R. (2007). Information Security. In: Sarbanes-Oxley. Finance and Capital Markets Series. Palgrave Macmillan, London. https://doi.org/10.1057/9780230598027_22
Download citation
DOI: https://doi.org/10.1057/9780230598027_22
Publisher Name: Palgrave Macmillan, London
Print ISBN: 978-1-349-28256-2
Online ISBN: 978-0-230-59802-7
eBook Packages: Palgrave Economics & Finance CollectionEconomics and Finance (R0)