Chapter 14. Addressing Both Insider Threats and Sarbanes-Oxley with ESM
“The average regulation has a life span one-fifth as long as a chimpanzee’s and one-tenth as long as a human’s—but four times as long as the official’s who created it.” | ||
--Norman R. Augustine |
Why Sarbanes-Oxley
There are a number of regulations and control frameworks in existence today that can be partially addressed with technology such as ESM. These include, but are certainly not limited to:
Sarbanes-Oxley
JSOX (Japanese SOX that mirrors the U.S. SOX and uses the COSO framework)
HIPAA (Health Insurance Portability and Accountability Act)
PCI (Payment Card Industry) Data Security Standards
GLBA (Gramm-Leach-Bliley Act)
FISMA (Federal Information Systems Management Act)
California ...
Get Enemy at the Water Cooler now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.