Please explain me what is SOX? and where can we implement it. Please give me a example.
SOX meand Sarbanes - Oxyley Act of 2002 introduced in US following the scams involving big companies in US in 2001 - 2002. Some of the major companies which got collapsed are Enron, Wordcom etc.
The act is administered by the Securities and Exchange Commission (SEC), which sets deadlines for compliance and publishes rules on requirements. Basically this act regulates whether the systems and procedures are followed in letter and principle. For example, IT departments have a responsibility of maintaining the properr records for the changes. For example if a new configuration / enhancement is made in SAP system, all related documentation like Functional design, Technical design, Integration testing documentation, UAT etc along with screen shots should be preserved.
You can get more details on SOX Act from the following link: