Internal audit standard compliance, potentially competing duties, and external auditors' reliance decision

David Breger; Mark Edmonds; Marc Ortegren

doi:10.1002/jcaf.22434

External Auditors' Involvement in the Internal Audit Function's Work Plan and Subsequent Reliance Before and After a Negative Audit Discovery

Auditing A Journal of Practice & Theory ◽

10.2308/ajpt-51486 ◽

2016 ◽

Vol 35 (4) ◽

pp. 159-173 ◽

Cited By ~ 4

Author(s):

Byron J. Pike ◽

Lawrence Chui ◽

Kasey A. Martin ◽

Renee M. Olvera

Keyword(s):

Internal Control ◽

Internal Audit ◽

Internal Controls ◽

Professional Standards ◽

Data Availability ◽

Internal Auditors ◽

External Auditors ◽

Internal Audit Function ◽

Anchoring Bias ◽

Before And After

SUMMARY To reduce redundancies and increase efficiency in the evaluation of internal controls (PCAOB 2007, 402–403), professional standards encourage coordination between external auditors and their clients' internal audit function (IAF). Recent surveys of internal auditors find that a component of this coordination is external auditors' involvement in developing the IAF's audit plans. Nevertheless, it is not known how such involvement affects external auditors' reliance on the internal control test work of the IAF, either before or after a negative audit discovery. Based on an experiment with 107 experienced auditors, we find that external auditors involved in the development of the IAF's audit plan perceive the IAF as more objective and that both objectivity and involvement contribute to these auditors' placing more reliance on the IAF as compared to external auditors with no involvement. This initial reliance results in the involved auditors' proposing reductions to the audit budget and re-performing less of the IAF's work. Consistent with an anchoring bias, we find that involvement leads to external auditors' continuing to place greater reliance on the IAF's work, even after they become aware of a negative audit discovery that should not have occurred had the client's controls been effective. Data Availability: Data are available from the authors on request.

Download Full-text

Internal Auditors and the Prevention and Detection of Computer Fraud

Journal of Information Technology ◽

10.1177/026839628900400406 ◽

1989 ◽

Vol 4 (4) ◽

pp. 230-238

Author(s):

Claire Marston ◽

Rob Dixon ◽

Paul Collier

Keyword(s):

Internal Audit ◽

Computer Assisted ◽

Input Output ◽

Network Systems ◽

Internal Auditors ◽

External Auditors ◽

Additional Information ◽

Specific Responsibility ◽

Computer Fraud

This study examines the involvement and attitudes of internal auditors to the prevention and detection of computer fraud. This approach differs from previous research which has concentrated on learning from frauds which have occurred. The main enquiry was by means of a questionnaire sent to members of the Institute of Internal Auditors. Verification and additional information was forthcoming by visiting some respondents. Almost a fifth of internal audit departments reported that they had no specific responsibility for either prevention or detection of computer fraud. It was clear that where responsibility was acknowledged, it is generally on an informal basis or is self imposed. Internal auditors reported that most reliance was placed on computer assisted tools and manual techniques like input/output reconciliation for detection of computer fraud. Few of the organisations surveyed had any laid down guidelines what to do in the case of a fraud discovery. Where guidelines did exist they called for dismissal and prosecution. In smaller firms, external auditors have a larger role in the prevention and detection of computer fraud than in larger firms. Opinion on the prevention and detection of computer fraud included the view that as network systems become more common, so detection and prevention will become more difficult. In addition it was claimed that management did not appreciate the level of the threat. Internal auditors feel that they have a role to play, but highlighted the fact that there is a shortage of staff with the requisite skills.

Download Full-text

The Role of Accounting Mechanisms for Corporate Governance in Reducing Creative Accounting Practices in Telecommunications Sector Companies in Riyadh City: An Empirical Study: دور الآليات المحاسبية لحوكمة الشركات في الحد من ممارسات المحاسبة الإبداعية في شركات قطاع الاتصالات بمدينة الرياض: دراسة ميدانية

المجلة العربية للعلوم ونشر الأبحاث مجلة العلوم الاقتصادية والإدارية والقانونية ◽

10.26389/ajsrp.l210520 ◽

2020 ◽

Vol 4 (15) ◽

Author(s):

Lamis Jameel Banasser, Maha Faisal Alsayegh

Keyword(s):

Corporate Governance ◽

Internal Control ◽

Audit Committee ◽

Internal Audit ◽

Internal Auditors ◽

External Auditors ◽

Riyadh City ◽

Creative Accounting ◽

Telecommunications Sector

The study aimed to identify the role of accounting mechanisms for corporate governance in reducing creative accounting practices in telecommunications sector companies in Riyadh city. A descriptive analytical approach was followed to conduct the field study. Sample of the study consisted of members of the audit committee, internal auditors, accountants from the surveyed telecommunications’ sector companies, and the external auditors in the audit offices that specialized on auditing the examined sample of companies. Questionnaire was used as a data collection method. Results showed that activating the role of accounting mechanisms for corporate governance can greatly contribute in limiting creative accounting practices. As they are controlling mechanisms that capable of protecting companies, shareholders and stakeholders from any manipulation or misleading information in the financial statements. Further, internal audit plays a major role in limiting creative accounting practices by examining and evaluating the effectiveness of the internal control system. Furthermore, the independence and competence of the external auditor and his commitment to the rules of conduct and ethics of the profession contribute greatly in limiting creative accounting practices in the examined companies. The study recommended the necessity of holding specialized training courses for members of audit committees, internal auditors and external auditors on methods of detecting creative accounting practices to combat and reduce them.

Download Full-text

Common Characteristics and Differences in External and Internal Auditing

European Journal of Economics and Business Studies ◽

10.2478/ejes-2018-0030 ◽

2018 ◽

Vol 4 (1) ◽

pp. 261-267

Author(s):

Fatmir Mehmeti

Keyword(s):

Internal Control ◽

Value Added ◽

Internal Audit ◽

Daily Practice ◽

Financial Statements ◽

Financial Information ◽

Financial Reports ◽

External Auditors ◽

Logical Concept ◽

Public Company

Abstract Many scholars have shown that failure in leading big companies as well as the latest financial crises have led the auditing market to perceive traditional auditing more as a legal requirement rather than as a value added for the company. There are others that do not completely agree to this, but they all accept that the auditing as a profession should accept changes which will affect the value added for the company from auditing. Nowadays the companies are required more accountability rather that it was required before, perversely only financial reports were reported by the companies. Auditing is a process which confirms the statement provided by the company management regarding the information in financial statements that are real and accurate. Auditing has to be based on evidences and logical concept for better understanding. For companies that operate in the market, it is important to provide financial information that is consistent, reliable and complete for all users of the financial statements (banks, potential shareholders and the international community). In daily practice of entities we have two kinds audit, the internal and external audits. Usually, these are interlinked and complementary, with the ultimate aim that the (overall) audit is more effective and the reports that will emerge are fully arguable and meaningful. The internal audit has an important role which is to increase the effectiveness of internal control in private or public company. Internal audit has the responsibility of informing the management of the institution of deficiencies or weaknesses in the internal control system. External auditors are the fist line of the front for companies liadership. They play a key role in verifying the financial information provided to shareholders. External auditors inspect the financial statements prepared by the entity and provide assurance and independent opinion if these statements represent a true and fair view of the entity's condition for the year under review.

Download Full-text

The Effect of Frequency and Automation of Internal Control Testing on External Auditor Reliance on the Internal Audit Function

Journal of Information Systems ◽

10.2308/isys-51266 ◽

2015 ◽

Vol 30 (1) ◽

pp. 21-40 ◽

Cited By ~ 7

Author(s):

Maia J. Farkas ◽

Rina M. Hirsch

Keyword(s):

Internal Control ◽

Work Performance ◽

Internal Audit ◽

Internal Controls ◽

External Auditors ◽

Internal Audit Function ◽

Remediation Strategies ◽

Low Degree ◽

External Auditor ◽

Manual Testing

ABSTRACT Failure of the internal audit function (IAF) to detect a significant deficiency in internal controls is a significant shortcoming in the IAF's work performance. This shortcoming in the IAF's work performance reduces external auditors' willingness to rely on the IAF's work. Using a two-stage experiment, we investigate how the implementation of three different internal control testing remediation strategies (akin to CCM, ACL, and periodic manual testing), which vary in their automation and frequency, affect external auditors' perceptions of IAF strength and planned reliance on the IAF's work. We find that automated remediation strategies fully remediate external auditors' perceptions of poor IAF work performance and low degree of reliance on the IAF, whereas manual remediation strategies result in only partial remediation. Counterintuitively, less frequent remediation strategies are more effective at improving perceptions of poor IAF work performance and low levels of reliance on the IAF, relative to continuous remediation strategies.

Download Full-text

White Collar Fraud: A Case Study of KOSS

Case Studies in Business and Management ◽

10.5296/csbm.v3i1.9116 ◽

2016 ◽

Vol 3 (1) ◽

pp. 22

Author(s):

Gagan Kukreja ◽

Robert Brown

Keyword(s):

Audit Committee ◽

Internal Audit ◽

White Collar ◽

Internal Controls ◽

Accounting System ◽

Financial Statement Fraud ◽

External Auditors ◽

Executive Staff ◽

American Express

Fraud does not draw community and political reaction like other crimes (Chapman & Smith, 2001) yet many believe that fraud can be as serious or even more serious than certain types of street crimes (Rebovich & Kane, 2002). The financial statement fraud of KOSS, an American company of more than $34 million was discovered in 2009 after the tipoff from American Express to Michael Koss, CEO. The fraud was significant relative to the size, turnover and profit of the organization perpetrated by senior accounting professional (white collar). KOSS would be classified as an SME and this fraud emphasizes that it is not only large organizations that need to be vigilant regarding accounting frauds and internal controls, but smaller companies as well. Because of its size, KOSS had little segregation of duties and, as was later revealed, massive weaknesses in internal controls. The external auditors, (Grant Thornton, LLP or “GT”) upon whom management were relying, did not have a full understanding of the business and clearly did not meet the expectations of senior management. It is also appeared that auditors failed to apply required audit standards during the audit. Later on, the external auditors agreed to pay KOSS compensation worth $8.5 million in July 2013 as a settlement.The board of directors including audit committee appeared to be unconcerned regarding effective internal controls, risk management and (wrongly) assumed that they could trust their senior executive staff. The board’s limited policy of ethics and compliance was outdated and did not include a whistleblowing policy. There was no internal audit function reporting to the board. Further, the computerized accounting system was outdated and lacked the application controls found in more modern applications. The purpose of this case study is to analyze what went wrong at KOSS, who was involved in fraud and how such kind of frauds can be avoided in future.

Download Full-text

Does Internal Audit Function Quality Deter Management Misconduct?

The Accounting Review ◽

10.2308/accr-50871 ◽

2014 ◽

Vol 90 (2) ◽

pp. 495-527 ◽

Cited By ~ 69

Author(s):

Matthew S. Ege

Keyword(s):

Internal Control ◽

Audit Committee ◽

Internal Audit ◽

Audit Committees ◽

Regulatory Requirements ◽

Difference In Differences ◽

External Auditors ◽

Internal Audit Function ◽

Auditor Quality ◽

External Auditor

ABSTRACT Standard-setters believe high-quality internal audit functions (IAFs) serve as a key resource to audit committees for monitoring senior management. However, regulators do not enforce IAF quality or require disclosures relating to IAF quality, which is in stark contrast to regulatory requirements placed on boards, audit committees, and external auditors. Using proprietary data, I find that a composite measure of IAF quality is negatively associated with the likelihood of management misconduct even after controlling for board, audit committee, and external auditor quality. This result is robust to a variety of other specifications, including controlling for internal control quality and separate estimation during the pre- and post-SOX time periods. A difference-in-differences analysis indicates that misconduct firms have low IAF quality and competence during misconduct years and improve IAF quality and competence in the post-misconduct years. These findings suggest that regulators, audit committees, and other stakeholders should consider ways to improve IAF quality.

Download Full-text

Updating Audit Standard—Enabling Audit Data Analysis

Journal of Information Systems ◽

10.2308/isys-50427 ◽

2013 ◽

Vol 27 (1) ◽

pp. 325-331 ◽

Cited By ~ 13

Author(s):

William R. Titera

Keyword(s):

Data Analysis ◽

Audit Process ◽

Private Company ◽

Continuous Auditing ◽

External Auditors ◽

Financial Statement Audit ◽

Audit Data ◽

Depth Analysis ◽

Audit Standard ◽

Audit Standards

ABSTRACT This paper highlights the emerging role of data analysis on the financial statement audit and its value throughout the audit process, particularly in providing audit evidence. It raises the issue of needed revisions to the Audit Standards, whether for public or private company audits, and illustrates how certain of the current Audit Standards inhibit the external auditors' use of enhanced data analysis and continuous auditing techniques. While this whitepaper identifies a few audit standards that could be revised in light of current technological capabilities, it does not purport to address all needed revisions. Rather, it recommends that a more in-depth analysis be undertaken to develop needed guidance, as well as a list of recommended changes to the standards.

Download Full-text