Anyone working in IT for finance companies can't have missed the changes in the last few years from Sarbanes-Oxley and other regulatory compliance.
But often the developers don't really get a clear picture of why and what it means for them, so this article "Regulatory Compliance Demystified: An Introduction to Compliance for Developers" on MSDN aims to explain those points.
The major acts get a summary of the legislation and the process steps required, ie.confidentiality, availability, integrity, access controls, auditing, logging and change management. Well worth a read.
See full Article.
Posts
