SOX

Definition

The Sarbanes-Oxley Act (SOX) is a U.S. federal law enacted in 2002 to protect investors from fraudulent financial reporting by corporations. It mandates strict reforms to improve financial disclosures and prevent accounting fraud. SOX compliance is crucial for publicly traded companies, requiring them to implement internal controls and procedures for financial reporting to ensure the accuracy and security of financial data.

Secure Settings Example

# Example of a secure logging policy for SOX compliance
logging:
  level: INFO
  retention_days: 90
  access_control:
    - role: auditor
      permissions: read
    - role: admin
      permissions: read, write
  encryption:
    enabled: true
    algorithm: AES-256

Insecure Settings Example

# Example of an insecure logging policy that may violate SOX compliance
logging:
  level: DEBUG
  retention_days: 30
  access_control:
    - role: user
      permissions: read, write
  encryption:
    enabled: false