The effects of the Sarbanes Oxley are still rippling throughout Information Technology organizations.

The Sarbanes-Oxley Act of 2002 defines and formalizes and provides a legal framework for acceptable conduct regarding the retention of records, electronic and paper for public companies, executives and the general population. Sarbanes Oxley establishes standards for accounting and IT infrastructures for corporate accountability as well as penalties for corporate wrongdoing. The effects of the Sarbanes-Oxley Act of 2002 are still rippling throughout IT organizations. Information Technology Departments seam to be in an infinite loop of trying to comply with an every changing interpretation of Sarbanes Oxley requirements on IT http://www.prleap.com/pr_2383.html A listing of Sarbanes Oxley Information Technology resources are at http://www.projectbailout.com/PM/Sarbanes-Oxley-IT.htm

Sarbanes Oxley specifically points to financial and information technology systems and raises the awareness of their criticality by making executives attest to the accuracy of their company's reported financial information. ISO 17799, a standard for managing data security comprised of a series of security best practices approved in 2000. Sarbanes Oxley focuses on financial reporting and disclosure, and the data integrity behind those efforts; it doesn't require compliance with 17799. However being are compliant with 17799, meets the expectations of Sarbanes Oxley. Computer security resources for Sarbanes Oxley Information Technology are listed at http://www.4terrorism.com/computersecurity.htm at www.4terrorism.com .