Comment Re:That's simply not going to happen in this decad (Score 1) 417
You obviously don't work in IT.
Rule 1. Don't trust the users.
Oh I don't, but unlike management, I don't feel the need to keep them under continuous surveillance.
You obviously don't work in IT.
Rule 1. Don't trust the users.
Oh I don't, but unlike management, I don't feel the need to keep them under continuous surveillance.
Personal anecdotal evidence suggests otherwise. In 10 years at a corporate headquarters of one of the largest corporations in the world
That's funny, I used to know somebody who had a similar anecdote to yours. He worked with a major accounting firm called Anderson...
Let me offer you a personal anecdote of my own which is that one of the things I've noticed is that out of all my friends and people I've met in various industries over the years, the biggest difference between the people I know who came out of situations like this relatively unscathed (be it from Enron or something as recent as Solyndra) and those that didn't, is that the people who didn't take a hit from it were the sort of people who never really trust the people running the companies they worked at.
Where I work, I get written up if I do not report a SOX compliance issue that I come across. We have employees whose sole job is to ensure SOX compliance within the company, and it's not seen as "making waves" it's seen as making sure the company is compliant with government legislation that would otherwise shut the company down PDQ.
Only if the people you're reporting aren't corporate officers, a.k.a. the people who facilitate/actually perpetrate most major FRAUDULENT activities.
Your assumption is pretty off base. I think if you dug into it you would find that most accounting practices that causes problems aren't intentional and certainly aren't caused by upper management. As a company grows larger and consequently more complex, things will pop up in the books that would get the Feds to sock you even if it wasn't malicious.
Nice straw man you built there, but I was actually responding to the ENRON reference in the original post by ArhcAngel by making the point that a good IT staff ensures compliance but ideally not at the expense of the major efficiency losses incurred by saddling the employees with technology that inhibits their ability to do their job.
To be clear, as somebody who has done consulting for various IT compliance regulation auditing preparations in the past, I completely understand that companies have to do it, despite the idiocy of the fact that if you try to reprimand a corporate officer that way, you're pretty much guaranteed to get canned so it really doesn't do anything except give the federal government a reason to come down on you for the stupid little things you mention while most of the time the higher level management who facilitate the major FRAUDLENT activities are guaranteed to be able to keep going until a news report comes out, the stock price tanks and the feds show up.
All that aside, however, what I have absolutely no patience/sympathy for are the admins who try to blame SOX and other compliance standards for not doing their primary job effectively, which is ensuring that they provide and implement the best technical solutions to meet as many of the individual needs of their fellow employees as they can as efficiently as possible.
When I see violations to SOX or corporate policy I make it a point to inform the person violating the policy and their supervisor. I also send an email to my supervisor with the details of my observations and subsequent actions so there is a record that I did not turn a blind eye to the infraction.
How it is handled from there is up to the person violating the policy and their superiors.
Wow, I'm honestly surprised they haven't let you go already for making waves, but I suppose since it sounds like it doesn't happen that often at the company you're employed at, it's probably taking them longer to build a solid documentation case against you.
I can't speak for other IT "dictators" but the way I look at it is if you get this office shut down it affects my job too @ss hole. As it happens I can see the old Enron building (now owned by Chevron) from my office. A constant reminder of just why SOX exists in the first place.
So just to be sure I understand this correctly, you're arguing that inconveniencing people by placing restrictions that prevent them from getting their work done as efficiently as they could be by facilitating their use of devices and technologies of their choosing is supposed to be a safeguard against fraudulent accounting and business practices which are almost always perpetrated by top management?
Beware of all enterprises that require new clothes, and not rather a new wearer of clothes. -- Henry David Thoreau