•  
  •  
 

Abstract

In 2002, the passage of Sarbanes-Oxley (SOX) was supposed to protect the public by changing the reporting requirements in financial statement audits. Management and auditors were to attest to the existence and effectiveness of internal controls over financial data, and that would supposedly “fix” the problem. Recent disclosures of business practices at two companies who were victims of cybercrimes—Target and JPMorgan Chase—bring to light a lack of proper internal controls over the financial data they collect. This paper discusses information security, internal controls, and SOX, as well as concerns of why current internal control policies are not effective in securing information. Lastly, it is important to note the most recent legislation enacted in an attempt to improve information security.

Download

Included in

Business Commons

Share

COinS
 
 

To view the content in your browser, please download Adobe Reader or, alternately,
you may Download the file to your hard drive.

NOTE: The latest versions of Adobe Reader do not support viewing PDF files within Firefox on Mac OS and if you are using a modern (Intel) Mac, there is no official plugin for viewing PDF files within the browser window.