Isn't it true that SOX only applies to companies that are publicly traded? I guess if a company were thinking of being publicly traded in the near future they might be concerned but if they don't should they be concerned?
----- Original Message ----- From: "Baakkonen, Rodney" <[EMAIL PROTECTED]> To: <u2-users@listserver.u2ug.org> Sent: Thursday, January 27, 2005 11:02 AM Subject: RE: [U2] [UV] SOX Compliance and Universe Seeing this post made me wonder how other companies productivity has changed since SOX. We are going to have to hire people to do jobs that did not exist before. Programming changes that used to take less than a day usually cannot be done now in that time frame. In order to get the proper signoffs from the business, stuff sits and waits now. Our auditors are insisting that we have one person on the business side that makes sure all signoffs are done before anything goes into production. It really is not so bad for our programmers. They aren't doing that much more work. But the business users are exasperated at the time it takes us to get new software and fixes into production. It seems like a pendulum has swung too far to the other side to correct for problems caused by Enron, Global Crossings and the like. This probably should go off-topic, but in a way is relevant as it has had a major impact on how software is done in our company. -----Original Message----- From: Meeta Advani [mailto:[EMAIL PROTECTED] Sent: Thursday, January 27, 2005 9:08 AM To: u2-users@listserver.u2ug.org Subject: [U2] [UV] SOX Compliance and Universe Hi all, The company I work for, Mothers Work Inc., is a publicly held company, traded on NASDAQ. As a result, we are obliged to comply with the Sarbanes-Oxley Act. I'm sure others of you are in the same position. We run our business on a DG-UX machine with Universe 9.411. The guidance we have been given is that we need to put stronger access controls on programmers, track programmer actions, make sure that sensitive commands at TCL such as DELETE, CLEAR-FILE, and DELETE/FILE/etc. within ED are locked down to a certain extent. Although we normally do all of our programming in-house, in this case we are interested in finding out if there is already a product out there (or code that is used internally at some other company) that accomplishes this, and works as a wraparound. If anyone has insight on this or other comments about SOX and the MV world, I'd like to hear how you are dealing with this situation. Thanks, Meeta Advani =============================== Meeta Advani Programmer/Analyst Mothers Work, Inc. [EMAIL PROTECTED] ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/ ------- u2-users mailing list u2-users@listserver.u2ug.org To unsubscribe please visit http://listserver.u2ug.org/