In November 2005, Jason Spaltro, executive director of information security at US-based Sony Pictures Entertainment, sat down in a conference room with an auditor who had just completed a review of his security practices. The auditor told Spaltro that Sony had several security weaknesses, including insufficiently strong access controls, which is a key Sarbanes-Oxley requirement.
- The week in security: You’ve just been breached. Do you know what to do?
- Cybersecurity market slowdown? Not anytime soon
- Why you don't need an RFID-blocking wallet
- Nearly half of business, security execs don’t know what to do after a data breach
- Google-hatched Security Planner matches expert advice with your worst security fears