An eweek article that takes a look at what Sarbanes-Oxley meanrs to companies. "Of particular interest is Section 404 of Sarbanes-Oxley, which requires companies to perform a self-assessment of risks for business processes that affect financial reporting."
The take away here is that though there are companies that help provide tools that faciliate reporting for compliance, the general need for organizations to have solid, coherent reporting in place goes beyond the act. This is about making companies responsible for their reporting and risk management which is something all companies should be anyhow.
The gov't is now on the hook to make sure they spell out compliance requirements clearly so that organizations can compy.
Posted by Diana at June 2, 2003 09:12 AM