| WebProWorld IT Forum|
Slow FTP connection & occasional "time out"
On Friday last week I uploaded a website via ftp for a customer. The connection was fast and I did all the necessary configuring without any problems at all. The site is running perfectly.
A little help with inadvertant shutdown
I am currently working on a HP 742C home PC. The problem is it shuts down either durring startup or minutes after startup. I tried Removing the PCI cards...
Lexus Talks to a Blog to Squash Virus Rumors
ZDNet reports that car maker Lexus denied that the Cabir wireless worm poses a risk to the Bluetooth-capable navigation systems featured in some of its vehicles ...
Researchers Working On New Protection Methods
The way you type when working at a computer may be the foundation for a new password system being tested by researchers from 2 major universities.
Samsung Debuts First DDR3 Memory Chip
South Korean electronics giant Samsung has introduced a prototype DDR3 DRAM memory module, which will be twice as fast as the current DDR2 architecture.
Growing New IT Managers
Where will your next generation of IT managers come from? For most senior IT leaders, the answer is that they will hire them.
IBM, Sony, and Toshiba Make With Cell Details
IBM, Sony, and Toshiba released details on the Cell microprocessor, which has been developed by the three companies together.
Intranet Project Names
"What's in a name? That which we call a rose By any other word would smell as sweet." In this famous quote from Act II of Romeo and Juliet, Juliet tells Romeo that a name is an artificial and meaningless convention, and the fact he is a Montague and she a Capulet (warring families) means nothing to their love.
Intranet Portal Project - RAD or Waterfall?
In this short article, David Viney examines whether Rapid Application Development (RAD) or Waterfall development methodologies should be used during Intranet Portal projects.
Tech Analyst Giants Group Blog
Did you know that stalwart tech analysts Rob Enderle, Richard Doherty and Tim Bajarin have a group blog ... I didn't. The blog, called Technology Pundits, features the writings of the three most well-known analysts in the industry.
Bill Gates Touts Interoperability, XML
In an executive email appearing on Microsoft's site, Bill Gates talked about his vision for future software interaction and some of the methods he wants to use to arrive there. Gates' idea for the scope of future applications made use of the word "Interoperability". Working to make different types of software work together in the business world is what Gates considers to be crucial to success.
A-List Bloggers Hacked
InternetNews.com: A bug in a popular log file analysis program has been exploited by attackers ... who were then able to deface a popular blog and other Web sites.
Satisfying IT Customers May Be a Bad Idea
Most IT departments I encounter say "customer satisfaction" is among their key goals. Unfortunately, this idea seems to lead too often to poor results.
Clustering Solutions and Zero Downtime Hosting Pitfalls
There are a number of benchmarks, which we may use to evaluate hosting companies.
Need Of Document Management System (DMS)
By Dr. Vikas V. Gupta
Document Management or Enterprise Information Management is perhaps one of the most important of the enterprise solutions that will provide a solution to the various requirements of SOX.
Several sections of SOX have a direct bearing on the manner in which the digital documents/records of the enterprise are created, reviewed, approved, stored, retrieved, transferred, and destroyed.
Knowledge Management: Document & Records Management
Estimates have been made calculating that a significantly large proportion (some say, more than 70%) of the documents owned by an enterprise are in digital format and might never be seen in hardcopy.
According to Gartner's Editor in Chief James Lundy: Records management will become a top 10 issue for many CIOs in the coming year.
In the following, we will discuss the various sections of SOX that a document management solution might help in complying with.
Section 302: According to Section 302, the CEO and CFO have to personally certify the financial statements and disclosures made by the company on authenticity and accuracy. This requires a system in place that will make the CEO and the CFO confident that all the disclosures that the company makes are accurate and authentic. This can be done in two ways:
One is to trickle-down the responsibility of the CEO and the CFO to the lower management levels and in response bubble-up the sign-offs from the lower management levels on all documents that are inputs to the company filings.
Second is to design comprehensive business processes that produce the company filings. The business processes will be designed in a very rigorous manner to comply with all the provisions and proper implementation and training of all the personnel related to the business processes will be carried out and tested on a periodic basis. Further, the business processes themselves will be open to stringent internal audits that will be carried out from time to time.
One, or a combination of both these practices will go a long way towards ensuring proper compliance.
For both these options it is clear that a strong enterprise-wide document management system will provide the foundation on which the compliance will actually be carried out. In the first case, the sign-offs can be configured using a workflow module of the document management system. In the second case, the business process itself will be configured in the document management system and all the relevant supporting or input documents too will be part of the DMS and appropriate subordination and linking will be done between the official company filings and all the input documents to it.
As proof of the records supporting the final company financials-as filed or reported-it is important to archive all the emails, excel sheets, instant messages or other communications and documents that were exchanged which led to a final certified filing by the CEO and CFO. This will safeguard the CxO's claim that all the financial reports are true to their knowledge and due diligence was carried out before certifying the reports.
Section 404: The CEO and CFO need to provide a report assessing and certifying that the "internal controls" have been assessed and are working fine or that there are weaknesses and appropriate action is being taken. Complying with this requirement is one of the most difficult parts of SOX and requires a whole slew of people, processes and technologies. However, DMS has an important role to play in this.
All the emails and attached documents in the chronological sequence will need to be archived for the purpose of proving that the internal controls are appropriate. Ideally, a workflow module will provide added assurance that the internal controls are implemented.
Section 103: requires storing the documents for a period of 7 years for audit companies. The company being audited would naturally want to replicate the documentation to guard against any discrepancy or miscommunication or mismanagement. Also another part of the act requires
Section 409: requires near-real-time reporting of all material events-whether internal or external to the investors and the regulatory bodies. This can be accomplished by using a single enterprise-wide document management system with appropriate "alerts" and notifications and workflow configured according to the design of the compliance-based business processes. This system would make sure that all relevant information is immediately relayed to the top management (CEO and CFO) and the compliance committee and advisors with minimum delays and latency. DMS provides appropriate capabilities to the compliance advisors to provide a recommendation (within the stipulated time frame) linked to each alert and escalate the reports to the CxOs with the appropriate recommendations. The CxOs can then decide whether it merits disclosure under the compliance act based on recommendations of their Compliance Committee or Advisors.
Section 802: provides for criminal penlties for knowingly altering, destroying, concealing and other activities, such as introducing false records, related to impeding or influencing an ongoing or potentially upcoming investigation by a federal agency. This would call for holding all documents in a secure system where absolutely no one in the company can alter them once they are finalized. Also this calls for a formal document retention and destruction policy which is strictly adhered to (in fact, can be proven to be adhered to) and which involves making sure that no document which any investigating agency would require is being destroyed or deleted. Furhter, the act requires that as soon as the company comes to know about a potential investigation all documents pertaining or somehow germane to that investigation are immediately ordered indestructible to or unalterable by anyone-including the CxOs of the company. This makes it important to have a feature related to creat!
Read the Rest of the Article.
|About the Author:|
Dr. Gupta is the Founder & President of Istrat. He is a B.Tech. from IIT, Bombay & did his M.S.(Engineering) & Doctorate in Engineering Science (Ph.D.) from Columbia Univ., New York. Following his doctorate he has worked at University of California, Irvine as a Research Scientist and as an Asst. Prof. at IIT Kharagpur.