is any one know the procedue of how to set the controls for pass SOX compliance, is there any script for Hippa cobit stardand?
my clients in China wants to know how to use qualys to pass the SOX compliance,
SOX Compliance varies from customer to customer based on their external auditor. Due to this variation, we have not published a SOX policy in Policy Compliance. The controls in Policy Compliance are mapped to COBIT and, thus, could be used to assemble a generic SOX policy. You could also request the General Computer Controls (GCCs) from the customer or external auditor to construct a policy.
Hope this helps.
well , my customer is a Compliance consultant company, they would liketo know how to pass the sox compliance, they have no experiecne of SOX ,
the question from them is :
1: what is the report type is standerd for SOX compliance ( the auditor needed )
2: who to select the contral ,there is too many controls in the policy, they prefer there has a script for each standerd like SOX cobit HIPPA etc.
3; many chinese company needs go to IPO ,so the martket will be huge for the compliance, if Qualys can have a script policy can be imported , or Qualys has the page for end user to selcte which stardard they need, it will much easier for them to scan before the audit to do the compliance.
please see if you can answer my questions
Retrieving data ...