Business Process-Based Regulation Compliance: The Case of the Sarbanes-Oxley Act
Karagiannis, D.
Mylopoulos, J.
Schwab, M.
Univ. of Vienna, Vienna;
This paper appears in: Requirements Engineering Conference, 2007. RE '07. 15th IEEE International
Publication Date: 15-19 Oct. 2007
On page(s): 315-321
Location: Delhi,
ISSN: 1090-705X
ISBN: 978-0-7695-2935-6
INSPEC Accession Number: 9876758
Digital Object Identifier: 10.1109/RE.2007.15
Current Version Published: 2007-11-19
Abstract
Balance Sheets and Annual Financial Reports play a major role in determining the public worth of any company. In the wake of corporate scandals such as Enron and WorldCom, the US and other countries passed legislation governing reporting processes. The Sarbanes Oxley Act of 2002 (hereafter SOX) requires US national securities exchange and US national security associations not to list any securities of any issuer that is not in compliance with the act. In this paper, we present a business process-based solution to the SOX compliance problem and offer evidence that such a solution is feasible through an industrial case study. The proposed solution aims to support SOX reporting requirements based on core business processes and a continuous improvement of the company's adopted business processes. This means that the solution integrates SOX-related tasks into the "daily work" of a company, rather than achieve compliance on a project basis.
Index
Terms
Available to subscribers and IEEE members.
References
Available to subscribers and IEEE members.
Citing Documents
Available to subscribers and IEEE members.
Cart
