Mirwali Azizi,Musawer Hakimi,Frishta Amiri,Amir Kror Shahidzay

DOI: https://doi.org/10.37275/oaijss.v7i2.230

2024-02-15

Open Access Indonesia Journal of Social Sciences

Abstract:The study explores into the ramifications of digital transformation on IT audit practices, scrutinizing both the opportunities and challenges faced by organizations globally. Its objective is to bolster the efficacy of IT audit by identifying pivotal insights and furnishing recommendations for adaptation. By thoroughly examining existing literature and synthesizing key findings, the study endeavors to shed light on how organizations can harness IT audit to optimize the advantages of digital transformation while mitigating associated risks. Conducting an exhaustive literature review, the research probes the impact of digital transformation on IT audit, drawing from esteemed sources to dissect the evolving role, avenues for improvement, and obstacles encountered. The results underscore the imperative of recalibrating IT audit practices to effectively contend with burgeoning technological demands. The literature illuminates a significant metamorphosis in IT audit prompted by the adoption of digital technologies. While prospects include advancements in data analytics, automation, and strategic advisory roles, challenges loom large in the form of cybersecurity risks and resource constraints. Ultimately, the study underscores the exigency for IT audit to adapt to technological advancements while navigating intricate challenges to sustain its effectiveness. In conclusion, digital transformation necessitates a proactive reorientation of IT audit practices to confront emerging risks head-on. Leveraging data analytics and strategic roles bolsters effectiveness, yet addressing cybersecurity and resource constraints mandates proactive measures and strategic investments. Organizations can optimize the value of digital transformation by fortifying IT audit through proactive initiatives and nurturing talent development.

Nishani Edirisinghe Vincent,Robert Pinsker

DOI: https://doi.org/10.1108/ijaim-08-2019-0093

2020-03-18

International Journal of Accounting and Information Management

Abstract:Purpose Risk management is an under-explored topic in information systems (IS) research that involves complex and interrelated activities. Consequently, the authors explore the importance of interrelated activities by examining how the maturity of one type of information technology risk management (ITRM) practice is influenced by the maturity of other types of ITRM practices. The purpose of this paper is to explore these relationships, the authors develop a model based on organizational strategy implementation theory and the COBIT framework. The model identifies four types of ITRM practices, namely, IT governance (ITG); communications; operations; and monitoring. Design/methodology/approach The authors use a survey methodology to collect data on senior information technology (IT) executives' perceptions on ITRM practices. The authors use an exploratory factor analysis (EFA) to identify four dimensions of ITR M practices and conduct a structural equation model to observe the associations. Findings The survey of senior IT executives' perceptions suggests that the maturity of ITRM practices related to ITG, communications and monitoring positively influence the maturity of operations-related ITRM practices. Further, the maturity of communications-related ITRM practices mediates the relationship between ITG and operations-related ITRM practices. The aggregate results demonstrate the inter-relatedness of ITRM practices and highlight the importance of taking a holistic view of ITRM. Research limitations/implications Given the content and complexity of the study, it is difficult to obtain senior executives’ responses in large firms. Therefore, this study did not use a separate sample to conduct the EFA to obtain the underlying four constructs. Also, the ITRM practices identified are perceptions. Even though the authors consider this to be a limitation, it also communicates the pressing areas that senior IT professionals are expected to focus given various external and internal pressures. This study focuses on large firms, hence, small to midsize firms are not well represented. Practical implications Given the demanding regulatory and financial reporting requirements and the complexity of IT, there is an increasing possibility that the accounting profession will require IT professionals to focus on operations-related ITRM practices, such as security, availability and confidentially of data and IS are closely related to internal controls. However, as this study demonstrates, the maturity of operations-related ITRM practices cannot be achieved by focusing solely on operations-related IT risks. Therefore, IT practitioners can use this study to raise awareness of the complex interrelationships among ITRM practices among managers to improve the overall ITRM practices in a firm. Social implications The study also shows the importance of establishing proper communication channels among various business functions with regard to ITRM. Extant IT research identifies the importance of the firm’s communication structure on various firm performance measures. For example, Krotov (2015) mentions the importance of communication in improving trust between the Chief Executive Officer and Chief Financial Officer. Firms with established communication channels have the necessary medium to educate and involve other departments with regard to the security of data. Thus, such firms are more likely to have mature risk management practices because of increased awareness of risks and preventive techniques. Originality/value The study contributes to ITG and risk management literature by identifying the role of monitoring-related ITRM practices on improving other areas of risk management. The study also extends the existing ITRM literature by providing an organizational strategy perspective to ITRM practices and showing how ITRM practices follow organizational strategy implementation. Further, the authors identify four underlying ITRM categories. Consequently, researchers could choose between two factors (Vincent et al. , 2017) or four factors based on the level of detail required for the particular study.

Alaulddin Abdul Wahab Hassoon Al-Sabti

DOI: https://doi.org/10.26668/businessreview/2023.v8i4.1381

2023-04-04

International Journal of Professional Business Review

Abstract:Purpose: The purpose of this study is to establish causal relationships between internal review quality, digital transformation, and the credibility of financial reports. Standardization, organizational reliance, independence, the advent of online transformation, and the function of internal auditing in risk assessment and the enhancement of financial reporting have all seen significant changes over time. Internal audit plays a critical role in ensuring the accuracy of a company's financial statements and performance reports. To boost the trustworthiness of financial accounts, it is crucial to invest in the research and development of more efficient techniques of internal auditing. Theoretical framework: Virtual Transformation Improves Internal Audits and Financial Reporting Quality In order to ensure people's safety during the digital revolution, the study's authors recommended setting up new rules and regulations to regulate the practice of internal audit. To cut expenses, the publication suggested digitizing all corporate procedures. To thrive in today's highly technical environment, the auditing sector will need to implement novel strategic work techniques and organizational structures. Otherwise, they'll have a hard time justifying their expenditures. Design, technique, and approach: Standardized surveys were used to acquire the primary data. There were 112 total questionnaires sent out, and only 79 were returned with the required information. Social science statistical package SPSS was used to evaluate the data and produce a 95% confidence interval for the estimation of digitalization's to the standard of quality of internal audits and financial-reporting. Findings: The results appears that there is no statistically meaningful connection between How well internal audits are conducted and how quickly digital transformations are implemented.; no digital transformation mechanisms elevate the standard of accounting reports. The quality of internal audits and the quality of financial reports do not appear to have any statistically significant relationship in light of the digital shift. Implication: This research might be a beneficial resource for anybody interested in the study of the rise of the digital age on the financial industry and the link between it and the internal review quality to enhance the company's internal auditing and reporting for better performance. Originality/ Value: The originality/value of changes in the way risks are evaluated and reported, the sophistication of online transformation and its impact on internal auditing standards, and Subject areas that would benefit from empirical research include the history of online transformation generally, and the evolution of online transformation specifically. Keeping investors and other stakeholders updated on the company's financial health and performance metrics is impossible without regular internal audits. In order to improve the accuracy of financial reports, it is essential to conduct more thorough internal audits. Since much of the research on this topic has been done in other countries or regions, this one is woefully underexplored. Purpose: The purpose of this study is to establish causal relationships between internal review quality, digital transformation, and the credibility of financial reports. Standardization, organizational reliance, independence, the advent of online transformation, and the function of internal auditing in risk assessment and the enhancement of financial reporting have all seen significant changes over time. Internal audit plays a critical role in ensuring the accuracy of a company's financial statements and performance reports. To boost the trustworthiness of financial accounts, it is crucial to invest in the research and development of more efficient techniques of internal auditing. Theoretical framework: Virtual Transformation Improves Internal Audits and Financial Reporting Quality In order to ensure people's safety during the digital revolution, the study's authors recommended setting up new rules and regulations to regulate the practice of internal audit. To cut expenses, the publication suggested digitizing all corporate procedures. To thrive in today's highly technical environment, the auditing sector will need to implement novel strategic work techniques and organizational structures. Otherwise, they'll have a hard time justifying their expenditures. Design, technique, and approach: Standardized surveys were used to acquire the primary data. There were 112 total questionnaires sent out, and only 79 were returned with the required information. Social science statistical package SPSS was used to evaluate the data and produce a 95% confidence interval for the estimation of digitalization's to the standard of quality of internal audits and financial-reporting. Findings: The results appears that there is no statistically meaningful connection between How well internal audits are conducted and how quickly digital transformations are implemented.; no digital transformation mechanisms elevate the standard of accounting reports. The quality of internal audits and the quality of financial reports do not appear to have any statistically significant relationship in light of the digital shift. Implication: This research might be a beneficial resource for anybody interested in the study of the rise of the digital age on the financial industry and the link between it and the internal review quality to enhance the company's internal auditing and reporting for better performance. Originality/ Value: The originality/value of changes in the way risks are evaluated and reported, the sophistication of online transformation and its impact on internal auditing standards, and Subject areas that would benefit from empirical research include the history of online transformation generally, and the evolution of online transformation specifically. Keeping investors and other stakeholders updated on the company's financial health and performance metrics is impossible without regular internal audits. In order to improve the accuracy of financial reports, it is essential to conduct more thorough internal audits. Since much of the research on this topic has been done in other countries or regions, this one is woefully underexplored.

Stephan Kudyba,Agnel D Cruz

DOI: https://doi.org/10.1108/jic-03-2022-0054

2023-07-23

Journal of Intellectual Capital

Abstract:Purpose Digital transformations of business processes are on the rise and the result is a need for a better understanding of how the elements of intellectual capital (IC) play a role in achieving successful digital project outcomes. New structural capital in the form of digital technologies must be identified and understood. Evolving skills of human capital in assimilating digital elements must also be considered, while collaboration within the development process involving relational capital provides a critical integration among these IC elements. This study illustrates the importance of identifying and managing the integration of IC components within an agile project management framework that are essential to achieving success for a digital initiative. More specifically, this study describes the process by which a multinational technology-based products company successfully developed a dynamic decision support platform utilizing an agile approach to guide a project management team to better manage the company's operations. Design/methodology/approach This study focuses on a case analysis approach of a multinational commercial and consumer products company. The paper presents existing research on the evolving state of project management for digital initiatives and focuses on agile methods. This study then delves into the case analysis that illustrates how IC played an integral role in the company successfully developing effective decision support involving an interactive dashboard using agile Project Management (PM), which enabled the project management team to better manage resources. Findings An examination at the case level illustrates that effective management and integration of IC has positive effects on project outcomes. While a balanced approach is evident as a requirement, the unique characteristics of the agile project management approach entails greater emphasis on select elements to adapt to a more dynamic development process. Originality/value This work depicts the complexities in providing analytic-based decision support in an agile/flexible project management scenario. This work adds to existing research by illustrating elements within IC categories and the elements' interdependencies that play an essential role in achieving success in this more flexible project environment.

management,business

Amjad Fayoumi,Olatorera Williams

2020-06-15

Abstract:As firms continue to experience changes in their information technology (IT) capabilities owing to the rapid development of IT applications, they are under pressure to use their IT to ensure continuous business adaptability and agility. One of the most promising emerging IT applications is the Digital Twin, a technology in which a digital duplication of a physical object is produced that enables rich analysis and simulation to take place. Firms need to explore the optimum configuration and hybridization of technology to keep enterprise performance on a desirable level. Enterprise agility, defined as the ability of a firm to sense and respond to a changing environment, is seen as playing a vital role in this key challenge, as it satisfies the overall aim of improving a firm’s performance while helping to adapt to the changes caused by the emergent IT applications. The authors argue that the equilibrium between agility and the adopted IT application capabilities can be better understood and presented by using the system dynamics model, which aims to quantify predictive scenarios. In this model we categorize the impacts as: (i) Digital Twin applications; (ii) the deployment approach; and (iii) agility contextual enablers. Such impacts cannot easily be measured and understood using cross-sectional methods; rather, an approach that combines description of the current reality and prediction should be adopted to understand the nature and level of the impact on enterprise agility and, ultimately, on enterprise performance.

Computer Science,Business

Fredrick Okong’o Ouma,Dr. Paul Sang,Dr. Franklin Kinoti

DOI: https://doi.org/10.51505/ijebmr.2022.6308

2022-01-01

International Journal of Economics, Business and Management Research

Abstract:Undertaking an information technology project in a banking environment is a complex task. Studies globally and locally indicate a high failure rate of information technology projects. Standish group report 2019 states that 83.9 percent of information technology projects partially or completely fail. The majority of projects 52 percent were over budget, overdue, or lacked promised functionality. Previous studies indicate information technology projects in commercial Banks in Kenya experience the same project performance variations, as projects are either delayed, over budget or have issues with functionality. Risk is a factor that challenges project performance. Project risk management includes risk identification, analysis, response, and monitoring and control of risk in a project. The overall goal of this study was to examine the relationship of risk management and information technology project performance in Kenyan commercial banks, taking into account the moderating effect of project complexity and the mediating effect of risk culture, both of which had been largely overlooked in previous research hence filling a research vacuum. The target population was forty projects in Kenyan commercial banks in Kenya which made the unit of analysis. Stratified and simple random sampling technique was used. Stratified and simple random sampling technique was used. Questionnaires were used to collect the data from the targeted one hundred and eight respondents. The instrument was tested for reliability by use of Cronbach's alpha coefficient of internal consistency test and validity by use of selected information technology project professionals' review. Drop and pick method of administering questionnaires was used so as to allow respondents enough time to go through the questionnaires and give their responses. An option of online questionnaires was also available to respondents. Based on a survey, the research used both descriptive and explanatory analysis designs. The association between risk analysis and performance of information technology projects in Kenyan commercial banks was investigated using multiple regression. Quantitative data was analyzed using multiple regression analysis model software tool SPSS Version 25. The study adopted empirical model of least squares method while testing the hypotheses. The researcher conducted diagnostic tests of Normality, Linearity, Homoscedasticity and Multicollinearity to see if the data conforms to the basic assumptions of linear regression. The findings were presented using statistical parameter estimates. Tables and figures were used to present data, and supported by explanatory annotations. The results indicated that risk analysis had significant effects on the performance of information technology projects in the banking sector. The study recommends that banks should consider implementing and fully operationalize risk analysis in information technology projects. The Central Bank of Kenya should also consider putting in place an information technology projects risk policy framework to aid the banks in project undertakings. The finding in this research will aid project managers and different stakeholders in the banking and related sectors in managing information technology projects risks and hence increase the success rate of the projects. The knowledge gap is also addressed by scholarly work that has resulted from this research by providing statistical data analysis and explanations on the IT project performance in relation to risk analysis influence in commercial banks in Kenya.

جمـــــــــال سعـــــد خطــــــاب,عمرو صلاح محمد عبد الله,منذر محمد علی محمد

DOI: https://doi.org/10.21608/masf.2022.240100

2022-03-31

المجلة العلمیة للدراسات والبحوث المالیة والإداریة‎

Abstract:There have been many developments in the internal audit over time in terms of standards, organizational dependency, independence, the emergence of digital transformation and its relationship to improving the quality of internal auditing and its role in assessing risks and improving the quality of financial reporting. Internal audit is fundamental in maintaining transparency in the dissemination of information about a company’s financial position and performance. In this respect, the quality of internal audit is essential for improving the quality of financial reporting.   Purpose–This study aims to examine the association between digital transformation, internal audit quality and its influence on financial reporting quality. The study hypothesis states that: - the first hypothesis there is no statistically significant relationship between the mechanisms of digital transformation and the quality of internal auditing; the second hypothesis: - there is no statistically significant relationship between the mechanisms of digital transformation and the quality of financial reporting. the third hypothesis: - There is no statistically significant relationship between the quality of internal auditing and the quality of financial reports in light of the digital transformation  Design/methodology/approach–The methodology adopted was survey method to collect primary data using a structured questionnaire. A total of 112 copies of questionnaire were distributed with 79 answered correctly and fully retrieved. Data was analyzed using statistical package for social science (SPSS) was used to measure the influence of digital transformation on internal audit quality and its influence on the financial reporting quality at 95% confidence level. The study results and statistical show that digital transformation has positive relationship with internal audit quality and enhancing the quality of financial reporting. The Study recommended that the importance of publishing new regulations and law to govern using the digital transformation on internal audit to secure and protect users. The study also recommended that using digital transformation in all corporate activities for reducing the costs. Finally, the profession of audit should leverage their strategic ways and methods of work to be adapted for the new generation of technology otherwise they face a problem of how to justify their costs.

Alih Usman,Ayoib Che-Ahmad,Salau Olarinoye Abdulmalik

DOI: https://doi.org/10.26668/businessreview/2023.v8i8.2922

2023-08-07

International Journal of Professional Business Review

Abstract:Purpose: This paper aims to establish a theoretical framework that will enhance the examination of the role of internal auditors in cybersecurity risk assessment in financial-based business organizations. Financial-based business organizations are institutions or companies that render financial services to public and private stakeholders in an economy. It is a powerful sector in the economy of every country. This drive poses a lot of challenges to organizations. Hence, business organizations strategically devised a means to safeguard the integrity, confidentiality, and availability of information. Also, innovation poses many risks and threats to the internal audit function in an organization. Theoretical Framework/Findings: Using the competency and planned behaviour theories (McClelland 1973 and Ajzen,1991), this study disclosed that the task performance of cybersecurity risk assessment by the internal auditor is influenced by the required internal auditor’s characteristics of professional ethics of integrity and objectivity, personality traits, professional skills competency professional knowledge competency and deterrence and rewards to advise the management on the implications of cyber security risk on business organisations for monitoring and mitigations. Methodology: A literature review approach is adopted to highlight the role of internal auditors in cyber security risk assessment in financial–based business organizations. Research Limitation/Implication: This conceptual paper has consequences for the practice of internal auditing. This approach is helpful to academic scholars in testing it out in the real world. This model is helpful to practitioners when evaluating the function of IAs in the cybersecurity risk assessment context. Originality/Values: Earlier auditing-related studies haven't addressed this problem. This study makes an effort to close such a gap and investigate the subject of the internal auditor’s characteristics and cyber security risk assessment among financial-based organizations.

Ling Xue,Cheng Zhang,Hong Ling,Xia Zhao

2011-01-01

Abstract:The objective of this study is to understand how the company's risk-taking decisions in IT adoption are influenced by the decision right of its IT unit. The study builds a theoretical framework capturing how the IT unit's decision right influences two determinants of risk taking, perceived risk and risk propensity. This framework also illustrates how the impacts of these two determinants on the actual actions of IT adoption are moderated by the IT unit's decision right. The framework is empirically tested using a dataset on the adoption of electronic supply chain management e-SCM) systems. The findings suggest that the IT unit's decision right is not associated with the decrease in perceived risk. However, it is associated with the increase in risk propensity. Moreover, the IT unit's decision right strengthens the positive association between risk propensity and e-SCM adoption, and weakens the negative association between perceived risk and e-SCM adoption. © (2011) by the AIS/ICIS Administrative Office All rights reserved.

Jagdish Pathak

DOI: https://doi.org/10.1108/02686900410530556

2004-05-01

Managerial Auditing Journal

Abstract:Auditors provide high assurance to executives amidst information and database risk. A framework is provided for auditors within cyber entities. The categories of e‐commerce, business‐to‐business, business‐to‐customers and mobile commerce use different core technologies. The common factor remains unchanged from the auditors' perception, i.e. risk and its potential to harm the integrity and accuracy of the data and decisions based thereon. E‐commerce requires audit to identify risks and show their impact on the information system. The American Institute of CPAs and Canadian Institute of Chartered Accountants jointly offer seals of assurance at Web and system levels. The limitations of these certifications are important for an auditor since they are set by these accounting bodies. The role and functions of an auditor are beyond those of the assurance approval auditors. Organizational decision‐making processes depend on segments of information bases, whereas these assurance providers audit a limited amount related to their interest.

management,business, finance

Yakubu Ajiji Makeri

DOI: https://doi.org/10.30630/joiv.4.1.280

2020-02-17

Abstract:Information Security is a crucial asset within an organization, and it needs to be protected, Information System (IS) Security is still threats a significant concern for many organizations. Is profoundly crucial for any organization to preserve Information System (IS) Security and computer resources, hardware, software, and networks, etc.The Information System (IS)assets against malicious attacks such as unauthorized access and improper use. This research, we developed a theoretical model for the adoption process of IS Security innovations in organizations, are numerous measures available that provides protection for organization IS assets, including (hardware, software, networks, etc.) and antivirus, firewall, filters, Intrusion Detection System (IDS), encryption tools, authorization mechanisms, authentication systems, and proxy devices. The model is to derive by the four combining theoretical models of innovation adoption, namely, the Theory of Planned Behaviour (TPB, Diffusion of Innovation theory (DOI), the Technology Acceptance Model (TAM),) and the Technology-Organisation-Environment (TOE) framework. The Computer security education needs to consider as a means of to combat against threats Arachchilage and Arachchilage et al., 2016). (Arachchilage and Love, 2013; While the process of innovation assimilation is as a result of the user acceptance of innovation within the organization. This model depicts security innovation adoption in organizations, as a two decision proceeding for any organization. The stage until its acquisition of innovation and adoption process from the initiation is considered as a decision made any organization. The The model also introduces several factors that influence the different stages of information Security and the innovation adoption process Adoption of IS security measures by the individuals and organizations

Li, Zhi

DOI: https://doi.org/10.1007/s13132-024-02264-6

IF: 1.815

2024-08-23

Journal of the Knowledge Economy

Abstract:This study addresses the critical gap in understanding the risks associated with digital transformation, particularly focusing on their impact on business innovation and growth within Industry 4.0. While the transformative potential of digital technologies is well-documented, the inherent challenges remain underexplored. This research introduces an innovative decision-support model designed to evaluate and prioritize risks unique to digital transformation in the industrial sector. Utilizing Pythagorean fuzzy sets (PFSs) and multicriteria decision-making (MCDM) techniques, the model systematically assesses and ranks risks to enhance informed decision-making processes. An extensive case study reveals that key risks include a lack of commitment from top management and unstable market environments, which significantly jeopardize the digital transformation journey. The study's findings underscore the importance of a strategic approach in mitigating these risks, facilitating a smoother transition to the digital economy. The proposed model offers actionable insights for organizations to optimize their digital transformation strategies by integrating advanced analytics and machine learning. This research contributes to the knowledge economy by providing a robust framework for managing the complexities of digital transformation, promoting sustainable innovation, and enhancing overall business performance. The study's strengths are further reinforced through sensitivity and comparison analyses, highlighting the resilience and practical applicability of the decision-support model. These insights are invaluable for policymakers, industry leaders, and scholars focused on leveraging technology to drive economic growth and societal progress in the era of Industry 4.0.

economics

Aleksandar Šijan,Dejan Viduka,Luka Ilić,Bratislav Predić,Darjan Karabašević

DOI: https://doi.org/10.3390/electronics13214209

IF: 2.9

2024-10-27

Electronics

Abstract:This paper presents a comprehensive model for cyber security risk assessment using the PIPRECIA-S method within decision theory, which enables organizations to systematically identify, assess and prioritize key cyber threats. The study focuses on the evaluation of malware, ransomware, phishing and DDoS attacks, using criteria such as severity of impact, financial losses, ease of detection and prevention, impact on reputation and system recovery. This approach facilitates decision making, as it enables the flexible adaptation of the risk assessment to the specific needs of an organization. The PIPRECIA-S model has proven to be useful for identifying the most critical threats, with a special emphasis on ransomware and DDoS attacks, which represent the most significant risks to businesses. This model provides a framework for making informed and strategic decisions to reduce risk and strengthen cyber security, which are critical in a digital environment where threats become more and more sophisticated.

engineering, electrical & electronic,computer science, information systems,physics, applied

Uzoamaka Iwuanyanwu,Apeh Jonathan Apeh,Olubukola Rhoda Adaramodu,Evelyn Chinedu Okeleke,Ololade Gilbert Fakeyede

DOI: https://doi.org/10.51594/csitrj.v4i2.606

2023-11-25

Computer Science & IT Research Journal

Abstract:This research paper explores the integration of Artificial Intelligence (AI) into Information Technology (IT) audits, analyzing current practices, training requirements, and prospects. The literature review traces the historical evolution of IT audits, emphasizing the transformative impact of AI. The discussion on training and skill requirements outlines the evolving role of auditors and the strategies for equipping them with essential competencies. Recommendations emphasize continuous learning, ethical considerations, and collaboration, envisioning a future where auditors adeptly leverage AI to enhance the efficiency and strategic value of IT audits within organizations Keywords: Artificial Intelligence, Information Technology Audits, IT Governance, Machine Learning, Auditing Practices, Skill Development

Petros Lois,George Drogalas,Alkiviadis Karagiorgos,Kostantinos Tsikalakis

DOI: https://doi.org/10.1108/emjb-07-2019-0097

2020-03-18

EuroMed Journal of Business

Abstract:Purpose The aim of this study is to examine continuous auditing in the digital age from the perspective of audit firm employees. It also investigates contemporary factors affecting continuous auditing, as well as the techniques that could be utilised for its implementation. Design/methodology/approach Internal audit departments of private companies were contacted via email and given a questionnaire developed based on the extant literature. The sample consisted of 105 individuals employed in the largest audit institutions in Greece. Data were analysed using multiple regression. Findings As expected, technological advances are indispensable for the establishment of an effective digital auditing system. The impact of data protection measures against cyber-attacks as well as employees' skills and training were found to be significant. Particular attention should be given to the preparation and building of virtual auditing teams. Research limitations/implications The fact that the digital era is still nascent with its final outcomes not yet visible makes it difficult to produce accurate predictions and draw conclusions. Further, there is a need to survey salient stakeholders in other country contexts beyond Greece pursuant of producing generalisable results. Practical implications The actions taken by companies to ensure cyber security and the formation of virtual teams were found to be highly significant for the implementation of a real-time auditing process. Traditionally, factors such as cost and time play an important role in optimising internal continuous auditing. Technological advancements combined with careful, strategic and case-specific implementation have the potential to enhance the efficacy of older methods. Social implications The positive propensity of staff to adopt technology and modern techniques illustrates how implementation difficulties can be overcome through the redefinition and scheduling of an organisation's objectives and training of its personnel. Originality/value Audit firm employees highlighted the protection of personal data, the avoidance of cyber-attacks and training as major continuous internal auditing goals. The results indicate acceptance towards technology and modern techniques, provided companies ensure adequate preparation and staff training conditions.

Jag,Pathak,Cff

Abstract:The categories of e-commerce, like Business-to-Business (B2B), Business-to-Customers (B2C) and mobile Commerce (m-Commerce) makes use of core technologies different from each other (Salazar et al, 2003; Maxey, 2001) however, the common factor remains unchanged from the auditors' perception, i.e. risk and its potential to harm the integrity and accuracy of the data and decisions based on such data. E-commerce has begun in its varied facets. As an auditor, one may have to audit them. My effort is to identify the risks and show their impact on the assurance of the information system of any organization. AICPA/CICA (Cashell & Aldhizer III, 1999; Primoff, 1998) has jointly offered seal of assurance at web level and system level. The limitations of these certifications are equally important for an auditor as the objectives and the perceptions of these approval auditors are limited to their respective goals established by these accounting bodies. But, the role and functions of an auditor are beyond those of the assurance approval auditors. The organizational decision making processes are dependent on various segments of information bases whereas these assurance providers audit a limited amount related to their interest. This conceptual paper attempts to show why an auditor is expected to provide a much higher level of assurance to the organizational executives amidst a plethora of risks faced by their information and databases and accordingly a framework is provided for auditors to be implemented in the cyber entities under their review.

Computer Science,Business

Junyi Chen

DOI: https://doi.org/10.55267/iadt.07.13907

2023-11-16

Abstract:The industries significantly rely on information technology for effective operations; however, there are hazards like data breaches and system breakdowns. Information system audits are essential to reducing these risks, ensuring quality control, and optimizing the system. These audits evaluate gaps in controls, non-compliance concerns, and vulnerabilities, allowing for the installation of efficient risk mitigation measures. Information system audits are essential for locating and reducing hazards related to an organization's information systems.Vulnerabilities, threats, and control flaws can be found through routine audits, which then allows for the deployment of the necessary controls and risk-reduction measures. Additionally, audits support quality assurance by assessing data reliability, accuracy, and completeness, as well as system performance, regulatory compliance, and industry best practices.The deployment of remedial steps to improve data integrity and system reliability is made possible by their assistance in assisting organizations in identifying gaps and flaws. Information system audits also aid system optimization by revealing details about the functionality and performance of the system.  An extensive evaluation of the literature and case study analysis was used to perform the research.For the analysis of this research, a sequential mixed technique (qualitative and quantitative) study was conducted. Delphi questionnaires were used twice to conduct the study. It encompasses organizations and entities involved in various aspects including but not limited to logistics companies, freight carriers, shipping and distribution firms, public transportation agencies, and supply chain service providers. Data from the semi-structured interviews for the qualitative study were collected via a Delphi survey, and 14 nodes and six themes were then generated.Audits assist organizations in identifying areas for improvement and informing decisions about system upgrades or alterations by analyzing system utilization, response times, resource allocation, and scalability. The results of this study highlight the importance of information system audits in assuring the prosperity, effectiveness, and resilience of businesses engaged in supply chain operations. Organizations can attain a greater level of enterprise risk management, quality assurance, and system optimization, which will improve supply chain operations in general, by managing risks, improving data quality, and optimizing system performance.

Qigao Wu

DOI: https://doi.org/10.52783/jes.2700

2024-04-29

Abstract:Business owners use professional auditors to do audits on their companies because auditors are essential partners in the growth of enterprises. Auditors may improve their ability to organize their audit work sensibly and provide accurate audit opinions if they effectively identify the risks associated with the audit. In this day and age of big data and the World Wide Web, businesses produce a significant quantity of data through the normal course of their activities. Using data mining techniques, deep learning, neural networks, and other developing technologies to extract excellent auditing data from the massive amounts of data produced by audited businesses is a significant challenge for auditors. As a result, the purpose of this research is to use computer data mining methods in order to develop an audit risk model. This model will give an example for auditors to use when doing big data analysis and will mine important data, which will ultimately result in an improvement in the audit process's efficiency as well as its correctness.

MUHAMMAD HARIS ASMUNI,ABDUL RAHMAN AHMAD DAHLAN

DOI: https://doi.org/10.31436/jisdt.v5i1.308

2023-06-05

Abstract:As stated in the Defence White Paper, Malaysia has planned to construct Malaysian Armed Forces (MAF) of the future, which will have five key thrusts: jointness, interoperability, technology driven, ability to operate in two theatres simultaneously, and mission oriented. It literally refers to Malaysia's status as a maritime nation and the government's dedication to the three pillars of the country's defence strategy: concentric deterrence, comprehensive defence, and credible cooperation. In addition, the report emphasised the importance of focusing on non-traditional security challenges such as terrorism, piracy, and marine security, as well as applying Industrial Revolution 4.0 (IR 4.0) technology to strengthen defence. The current state of digital transformation in the post-COVID-19 period has a significant impact on achieving the MAF's vision that has been outlined in the Defence White Paper. MAF's management should be in sync with the organization's strategic goals. To guarantee that the vision is realised, potential risks should be recognised, mitigated, reduced and/or eliminated. Integrated enterprise risk management (IERM) is a critical component of organisation‘s success, by assuring force preparedness in the face of any threats and challenges. This paper offers a possible IERM Business Model, using Business Model Canvas (BMC) framework, for MAF to consider, deliberate and adapt. The proposed MAF IERM business model is compliant with MS ISO 31000:2018 and ISO 27000 Information Security Management System (ISMS) in risk assessment, and as part of the digital transformation effort.

Mohammed Muneerali Thottoli

DOI: https://doi.org/10.1108/arj-09-2023-0269

2024-02-13

Accounting Research Journal

Abstract:Purpose In the fourth industrial revolution, where business accounting integrates with automation through artificial intelligence (AI) and information communication technology (ICT), auditors must be able to access and analyze vast data and information to identify potential risks and issues. Using data analytics and AI to study significant amounts of data linked to audits, this study aims to investigate auditing practices by leveraging ICT and AI to enhance the audit process. Design/methodology/approach Bibliometric and quantitative research techniques have been used in the study's mixed-method process. The theoretical underpinnings of AI have been investigated using the bibliometric research method, and the challenge of implementing ICT-enabled auditing practices among auditing professionals has been studied using the quantitative research method. Surveys, interviews and bibliometric analysis have all been used as data-gathering techniques. Findings Research in AI and auditing has a broad worldwide scope, involving developed and developing nations. ICT perceived benefits have no direct effect on auditing practices. However, ICT training has a mediating effect on the relationship between ICT perceived benefits and auditing practices. ICT adoption has no moderating effect on the relationship between ICT training and auditing practices. Research limitations/implications Findings have significance for lead auditors, policymakers and the Institute of Chartered Accountants of India (ICAI), who are keenly interested in upgrading the auditing practice of accounting professionals in India by incorporating AI and ICT determinants. Practical implications This research makes a significant contribution by offering a thorough framework for improving the knowledge management of practising auditors regarding ICT adoption, training and perceived benefits, a crucial component of auditing practices in the digital age. In addition, it provides insightful information about how AI affects accounting practices, which may point the way for further study in this area. Originality/value This research has significant implications for auditing firms in India. It can inform ICAI, policymakers and regulators in their attempts to foster the incorporation of AI and ICTs in auditing practice.