Also known as the Sarbox Act, it was passed by the United States Congress in 2002. According to SOX compliance, it is mandatory for organizations to conduct annual audits of all the financial statements and transactions, and ensure financial data security against cybersecurity threats.