Due to many converging and dynamic forces including the Internet, eBusiness, and Sarbanes-Oxley requirements, privacy of information laws and sound IT and business practices, information, application and infrastructure security control processes are at the forefront of concerns for business and IT management alike. Partners takes a comprehensive and systematic approach to application and information security. We help our clients meet the challenge to establish required controls while providing straightforward and easy access to information. Documentation covering all application set-up and workflow must be created and maintained to include the basic security matrix and processes used to control change - whether for user access, user security, and/or life cycle development.

Our consultants will work with your organization directly to address application design and security controls that ensure segregation of duties. These will significantly help you meet challenges stemming from the following legislation.

Sarbanes-Oxley Act

The act mandates that both corporate officers and an external auditing agency formally attest that financial data is being handled in a manner that preserves its integrity. All presentation, application, and data tiers of the financial system architecture must, therefore, have sufficient security controls in place. Partners can play a key role in ensuring that your organization properly establishes, maintains and reports the internal control framework.

Privacy of Information Laws

Companies and organizations are required by law to appropriately handle personal information. Partners offers expertise and experience to help you understand and comply with enacted and pending legislative statutes from state and foreign governments.

For more information, download the Application Security and Change Control Processes data sheet or contact the Partners office nearest you.