We help IT Professionals succeed at work.

SOX compliance and shared servers

monosodiumg
monosodiumg asked
on
366 Views
Last Modified: 2010-04-11
When the same financial service (web front end, DB backend) is provided to multiple clients does SOX (Sarbanes-Oxley) require me to segregate the client's data onto separate DB servers and/or domains?
I have heard an argument that since the auditor for client A isn't allowed access to data from client B it is impossible for him to conduct s security audit if the data is on the same server. Is that correct?
Comment
Watch Question

This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION

Author

Commented:
I'm open to more contributions. War stories would be great.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.