Satisfy SOX Auditors with Simplified Reporting on Privileged Access
The Sarbanes-Oxley (SOX) Act of 2002 set strict standards for financial reporting by U.S. public companies. SOX Section 404 mandates an annual assessment by an independent auditor of the effectiveness of a public company's control procedures. IT departments, who are usually tasked with managing these audits, need to ensure that systems holding financial data can be accessed only by those whose job function requires it, that privileges are limited just to those required by the job, and a record off all activity is kept.
Centrify helps IT organizations simplify their SOX auditing requirements with a cost-effective solution that leverages technology already in house: Microsoft Active Directory. By leveraging existing identity infrastructure, tools, processes and skill sets, Centrify Server Suite facilitates rapid and secure compliance measures to address key SOX requirements on Windows, UNIX and Linux systems. Centrify Identity Service ensures individual accountability when accessing sensitive data in SOX-compliant business apps.
- Associate all access rights and privileges on audited systems to individual users, providing the level of accountability required by SOX auditors.
- Implement role-based security and access controls along with centralized reporting of who has access to what systems.
- Limit privileged access on SOX system to just the subset of commands they need to perform their jobs.
- Capture detailed audit trails of all user actions, and system responses, for inspection by SOX auditors.