Have you thought about hiring a consultant to write this for you? Sounds like you need someone with experience in this space.
Thanks, Brian Desmond [email protected]<mailto:[email protected]> w - 312.625.1438 | c - 312.731.3132 From: [email protected] [mailto:[email protected]] On Behalf Of Kevin Lundy Sent: Thursday, June 27, 2013 10:02 AM To: [email protected] Subject: [NTSysADM] SOX and SEIM Hi all, I'm looking for examples of SOX narratives for SEIM utilization. We have a new SEIM (McAfee Nitro) for monitoring our network. Since it also monitors our financial systems it is considered a key control, thus I need a narrative. I'm really struggling with the contents of the narrative. If anyone has a narrative they are willing to share, I would love to have a reference. (I'm willing to sign an NDA if necessary). Alternatively, if any of you are or have been an auditor, what types of evidence would you be looking for? Thanks in advance for any help! Kevin
