Who hasn't spent hours analyzing why their computer doesn't connect to the network only to find the network cable unplugged? Sometimes the simple answer is the right one. Most companies think SOX compliance is complex and difficult--and for some it really is. But most companies make it more complex than it has to be by going way out of their way to avoid applying common sense.

IEEE P1074-2005 will ballot this year, offering key information assurance guidance that enables the appropriate prioritization of security on projects and the building of the appropriate level of security controls into products. This white paper provides an overview of those changes, describes the investigative journey the revision team took to arrive at these changes, and compares the beneifts of the revised standard against other process and information assurance related standards.