Cost for SOX Compliance Less Than Expected: StudyCost for SOX Compliance Less Than Expected: Study

<a href="http://searchcio-midmarket.techtarget.com/originalContent/0,289142,sid183_gci1293739,00.html">SearchCIO-Midmarket.com</a>

Jim Manico, OWASP Global Board Member

January 15, 2008

1 Min Read
information logo in a gray background | information

Smaller companies are paying less to comply with Sarbanes-Oxley (SOX) requirements than previously anticipated.A new study from Lord & Benoit finds these companies spending 14 percent less than expected when the legislation--which defines business records that must be stored and for how long--was first enacted. In dollars and cents, that translates to roughly $78K in first-year fees as opposed to the $91K estimated by the SEC, according to the research.

The consultancy?s report is based on a cross-section of 29 smaller public companies in 12 industries, as well as an analysis of actual audit fees reported by nearly 5,500 public companies.

"I think the report just dispels the myth that costs are out of control," said Robert Benoit, president of Lord & Benoit.

Even if they are paying less, small-business advocates think SOX-associated fees are still too steep.

"It's still cost-prohibitive,? added AMR Research analyst John Hagerty. "The number would have to be down to about $25,000 to $35,000 before the squawking would stop."SearchCIO-Midmarket.com

Read more about:

20082008

About the Author

Jim Manico

Jim Manico

OWASP Global Board Member

Jim Manico is a Global Board Member for the OWASP foundation where he helps drive the strategic vision for the organization. OWASP's mission is to make software security visible, so that individuals and organizations worldwide can make informed decisions about true software security risks. OWASP's AppSecUSA<https://2015.appsecusa.org/c/> conferences represent the nonprofit's largest outreach efforts to advance its mission of spreading security knowledge, for more information and to register, see here<https://2015.appsecusa.org/c/?page_id=534>. Jim is also the founder of Manicode Security where he trains software developers on secure coding and security engineering. He has a 18 year history building software as a developer and architect. Jim is a frequent speaker on secure software practices and is a member of the JavaOne rockstar speaker community. He is the author of Iron-Clad Java: Building Secure Web Applications<http://www.amazon.com/Iron-Clad-Java-Building-Secure-Applications/dp/0071835881> from McGraw-Hill and founder of Brakeman Pro. Investor/Advisor for Signal Sciences.

See more from Jim Manico
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

A group of smiling college graduates celebrating their graduation.
IT Leadership
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era
Why Liberal Arts Grads Could Be the Best Programmers of the AI Era

Jan 17, 2025

Flame front of the Eaton Fire on the first night during the January 2025 California wildfires in Altadena and Los Angeles
IT Sectors
How Tech Supports the Emergency Response to the LA County Wildfires
How Tech Supports the Emergency Response to the LA County Wildfires

Jan 16, 2025

Graphic Pop Art style Illustration of Keanu Reeves as NEO from the film, The Matrix
IT Infrastructure
Y2K and Infrastructure Resilience 25 Years Later
Y2K and Infrastructure Resilience 25 Years Later

Jan 7, 2025

Young businessman working on a virtual screen of the future and sees the inscription: Now hiring
IT Leadership
Help Wanted: IT Hiring Trends in 2025
Help Wanted: IT Hiring Trends in 2025

Nov 20, 2024

Cobol programming language software development concept on vitual screen.
IT Leadership
Untangling Enterprise Reliance on Legacy Systems
Untangling Enterprise Reliance on Legacy Systems

Jan 21, 2025

Webinars
More Webinars
White Papers
More White Papers
Reports
More Reports