The Sarbanes Oxley Act of 2002 (SOX) was established to promote reasonable assurance of achieving objectives relating to financial reporting, operational control, and compliance. A SOX program is established to facilitate control adherence, monitor the health of the compliance program, and adapt to an ever-changing risk environment. With the variability of risks facing an organization, a SIEM technology should augment and streamline compliance objectives, providing forensic evidence, advanced alerts, and correlation, all of which foster the maturity of the organization’s compliance posture.
LogRhythm’s SOX Compliance Module provides augmented and direct support of control objectives through pre-bundled Investigations, Alarms, AIE Rules, and Reports. Alarms and Reports are automatically associated with the correct in-scope SOX log sources. You can schedule Reports for periodic generation and delivery, or generate them on demand. Doing so assists in delivering appropriate content to audit, IT operations, IT security, and executive management. To identify areas of non-compliance in real-time, you can leverage Investigations and Alarms for immediate analysis of activities that impact your organization's in-scope environments. The following user guide provides highlights of these module components and also provides all of the module’s contents.
As organizations mature in their compliance adherence, LogRhythm’s approach to compliance offers various components that can be utilized and enhanced throughout the lifecycle of the organization’s compliance. The ultimate goal is to mature with the organization to eventually bridge the gap between a compliance program and a cyber security program. Trends in control objectives indicate an increased requirement to address cyber security risks and to establish a robust Incident Response function. With this trend in mind, LogRhythm has developed compliance modules that augment controls based on cyber security risks. LogRhythm’s Case Management is a platform to establish and mature an Incident Response program as a central collection and distribution of forensic data.