June 19, 2009 1:09 PM
Posted by: Robert Davis
Accounting,
Applications,
COE,
Council of Europe,
FCPA,
Financial,
Foreign Corrupt Practices Act,
Information Technology,
IT,
Laws and Regulations,
OAS,
OECD,
Organisation for Economic Co-operation and Development,
Organization of American States,
Sarbanes Oxley Act,
SOXFCPA control measures for an adequate system of internal accounting controls include maintaining appropriate segregation of duties, allowing only authorized transaction execution, controlling access to assets, and reconciling documented assets to actual assets regularly. Completeness, accuracy,...
June 16, 2009 7:06 PM
Posted by: Robert Davis
Accounting,
Applications,
COE,
Council of Europe,
FCPA,
Financial,
Foreign Corrupt Practices Act,
Information Technology,
IT,
Laws and Regulations,
OAS,
OECD,
Organisation for Economic Co-operation and Development,
Organization of American States,
Sarbanes Oxley Act,
SOXThe FCPA codifies bribery of foreign officials as a criminal offense for U.S. publicly held companies, requires accurate financial-transactions accounting, and amends the Securities Exchange Act of 1934....
June 12, 2009 6:36 PM
Posted by: Robert Davis
Accounting,
Applications,
COE,
Council of Europe,
FCPA,
Financial,
Foreign Corrupt Practices Act,
Information Technology,
IT,
Laws and Regulations,
OAS,
OECD,
Organisation for Economic Co-operation and Development,
Organization of American States,
Sarbanes Oxley Act,
SOXLegacy law or regulation replacement is a common occurrence within most governments when circumstances appear to discredit legal mandate enforcement. However, the U.S. Sarbanes-Oxley Act (SOX) of 2002...
March 16, 2009 7:01 PM
Posted by: Robert Davis
Availability,
CIA,
Confidentiality,
Functionality,
Identification,
Information Security Management,
Integrity,
ISM,
IT Security,
Laws and Regulations,
Quality,
Service Level Agreement,
SLA,
Token,
UsabilityRegarding provisioning physical authentication mediums, an entity's deployed access control process should clearly define the way encoded identification is delivered to users -- within the context of promoting adequate confidentiality, integrity and availability. Specifically, the process to...
March 12, 2009 6:41 PM
Posted by: Robert Davis
Availability,
CIA,
Confidentiality,
Functionality,
Identification,
Information Security Management,
Integrity,
ISM,
IT Security,
Laws and Regulations,
Quality,
Service Level Agreement,
SLA,
Token,
UsabilityAs a corollary requirement, when considering physical tokens, functionality is directly related to capabilities. Consequently, physical token appropriateness should be evaluated based on the set of attributes applicable to the existing set of activities and their specific properties. In other...
March 9, 2009 6:56 PM
Posted by: Robert Davis
Availability,
CIA,
Confidentiality,
Functionality,
Identification,
Information Security Management,
Integrity,
ISM,
IT Security,
Laws and Regulations,
Service Level Agreement,
SLA,
Token,
UsabilityInformation asset usability implies availability to perform requested services as well as transparency. Determining physical token usability necessitates assessing relevant and pertinent services for the access process as well as secure user delivery in a timely, correct, and consistent manner....
March 6, 2009 7:50 PM
Posted by: Robert Davis
Availability,
CIA,
Confidentiality,
Functionality,
Identification,
Information Security Management,
Integrity,
ISM,
IT Security,
Laws and Regulations,
Token,
UsabilityOrganizationally, information security normally is considered a program enabling and optimizing IT security services for the entity in order to satisfy business requirements, while simultaneously providing strategic and tactical IT security infrastructure management that complies with applicable...
