While perusing a draft of "IT Control Objectives for Sarbanes-Oxley, 2nd Edition" (www.nwdocfinder.com/5178), I discovered several profound statements in the section on compliance and IT governance: "There is no such thing as a risk-free environment, and compliance with the Sarbanes-Oxley Act does not create such an environment. . . . Good IT governance over planning and life-cycle control objectives should result in more accurate and timely financial reporting." This thinking lets today's IT auditors focus on the key controls posing the most risk, rather than those on the fringe.
- Free Whitepaper! Learn how to create an analytics environment that is governed, scalable and self-serve.
- Free Whitepaper! The 5 criteria to help you select the right analytics platform for your organization.
- Free Whitepaper! Learn how IT is evolving from producer to enabler, and fostering collaboration around analytics.