full-disclosure - Re: SOX whistleblowers' clause Compliance

lists.openwall.net		lists / announce john-users owl-users popa3d-users / xvendor oss-security / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4
Open Source and information security mailing list archives

This website is powered by Openwall GNU/*/Linux security-enhanced OS

[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list]

Date: Thu Dec  1 06:19:42 2005
From: aditya.deshmukh at online.gateway.strangled.net (Aditya Deshmukh)
Subject: Re: SOX whistleblowers' clause Compliance

> Seeing how my question was ignored.  I will tell you the answer.
> 
> There is no requirement in SOX to do this.

Why cant you use google to find out this ?
-------------------------------------------------------------------
http://www.nonprofitrisk.org/nwsltr/archive/employprac091005-p.htm

*In the para 4*
"Protecting whistleblowers is an essential component of an ethical 
and open work environment."

*In para 6* <----- this is the one that you want 
"Provide Employees Multiple Avenues to Report Concerns"

 While employees will hopefully feel comfortable raising concerns
 directly with their supervisors, many employees are reluctant to
 raise concerns with line management for fear of retaliation, 
 especially where their concerns pertain to unethical or illegal 
 conduct by their line managers. Therefore, nonprofits should provide
 several options for employees to raise concerns, including the 
 option of raising a concern anonymously.  
-------------------------------------------------------------------
If you read the last line in para 6 you will find that anon mailbox
is a requirement for SOX compliance. 

And mailbox was ment for email Michael :)

But I think that "with a post and some concrete" mailbox will be 
Indeed be far more secure..... 



________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)