asked on

Regulations for my organization

I have been at this job now for about a year. It's been a very crazy year. The guy before me left the network a mess. It was common for DNS issues the phone systems and other things to go down on a weekly basses. After getting the network stable and finally just rebuilding and upgrading the whole thing to 2003 windows and upgrading all the desktops to XP. I am now wondering what my 501c nonprofit organization that provides loan (so I'm guessing we're a financial institution) would fall under. I would like to know so that I can begin to work towards making sure we are following all regulations for our industry. Where can I find information about this or where can I go to find out what we should be following?

tillisonc

I would start with SOX as they pertain to finicial reg's.

http://www.sarbanes-oxley.com/

http://www.riskglossary.com/articles/united_states_financial_regulation.htm

http://www.aicpa.org/info/sarbanes_oxley_summary.htm

http://www.sec.gov/divisions/corpfin/faqs/soxact2002.htm

These may help give you some direction.

daviddvg1

ASKER

Thanks. I know my accounting department is following this, but i've heard one of the VP's say that since we're 501c we don't need to. What must I do from an IT Dept point of view. Should i be archiving all email? should my servers be in lock down 24/7? I have a door w/ a lock on it to the servers, but know one knowes where keys maybe.

ASKER CERTIFIED SOLUTION

tillisonc

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial