June 2006 Survey: Data Security Receives a Boost from Compliance Efforts

By Allan Alter  |  Posted 06-14-2006

Regulations appear to be achieving what the government intended.
Investors, not CIOs, are in a better position to judge whether Sarbanes-Oxley is improving their confidence in the numbers reported by companies. But CIOs do know a fair amount about security, and they believe that regulations are making financial, customer and employee data more secure—just what legislators hoped for. Meanwhile, compliance isn't proving to be a drag on profitability for most companies. In short, there's been gain without universal pain. However, for the second year in a row, 25 percent or more of respondents who comply with the Sarbanes-Oxley Act say their company has disclosed material weaknesses or significant deficiencies in internal controls. The surprisingly high number indicates that Sarbanes-Oxley is forcing companies to confront problems with their financial reporting and controls—problems that are widespread.



Story Guide:

  • Finding 1: Many more companies report full compliance with recent regulations than did last year.
  • Finding 2: It's not yet clear whether compliance spending has peaked.
  • Finding 3: Compliance is driving spending on consulting, security and document management.
  • Finding 4: Regulations appear to be achieving what the government intended.
  • Finding 5: Despite low expectations, companies have received business benefits from Sarbanes compliance.
  • Finding 6: Compliance goes more smoothly when a holistic approach is taken.

    Read our previous surveys on compliance:

  • Compliance 2005: Is Automating Compliance a Waste of Money?
  • Sarbanes-Oxley 2004: Are You Ready to Comply?