Sarbanes-Oxley, HIPAA, PCI, and GLBA have placed increased emphasis on the need to adequately secure critical data stored in IT systems.
Organizations around the world are implementing a tighter set of controls over the configuration and use of their critical business applications and servers. Many companies have adopted frameworks like ISO17799 (27002) and COBIT to guide the definition and implementation of their security policies. For public companies in the United States, Sarbanes-Oxley section 404 requires management to attest to the validity of their financial results on a quarterly basis.
To support this requirement, IT groups are running audit reports against their critical financial systems quarterly or even more frequently.
Download this guide to learn the key items that need to be reviewed on IBM i (AS/400, System i) for both configuration data and transactional log information from the audit journal to meet compliance regulations.