Sarbanes Oxley compliance means your third-party services providers must be compliant too.
Once upon a time, SOX-induced insomnia was an affliction unique to the public company CIO. Not anymore. Today, they are joined by their IT service providers who are finding themselves caught in the crosshairs of their clients’ compliance efforts.
“Everyone is looking at their relationships, especially if they outsource a business type process like payroll or claims processing,” said Ed Byers, a principal with Delotte & Touche. “If you’re a CIO with an outsourcing service provider, you better be aware of the need to demonstrate internal controls.”
See full Article.