Pavel Castka,Cory Searcy

DOI: https://doi.org/10.1016/j.bushor.2021.11.003

Abstract:The COVID-19 pandemic has exposed the obsolescence and vulnerability of many existing auditing practices. While some progressive practices have been implemented (e.g., remote audits using rudimentary information and communication technologies), a new paradigm is needed not only to account for the risk of repeated lockdowns but also to align practices with the level of digitalization, automation, and use of artificial intelligence in the current business environment. In this article, we argue that the adoption of new technologies requires a fundamental rethinking of how auditing services are delivered. We argue that new technological possibilities have implications for five other auditing elements that enable a shift from the old to the new paradigm of auditing, namely actors, processes, spaces, training and skills development, and services. We explain how nonfinancial audits conducted under the new paradigm are key enablers of a firm's ability to participate and to thrive in a competitive international marketplace.

Jag,Pathak,Cff

Abstract:The categories of e-commerce, like Business-to-Business (B2B), Business-to-Customers (B2C) and mobile Commerce (m-Commerce) makes use of core technologies different from each other (Salazar et al, 2003; Maxey, 2001) however, the common factor remains unchanged from the auditors' perception, i.e. risk and its potential to harm the integrity and accuracy of the data and decisions based on such data. E-commerce has begun in its varied facets. As an auditor, one may have to audit them. My effort is to identify the risks and show their impact on the assurance of the information system of any organization. AICPA/CICA (Cashell & Aldhizer III, 1999; Primoff, 1998) has jointly offered seal of assurance at web level and system level. The limitations of these certifications are equally important for an auditor as the objectives and the perceptions of these approval auditors are limited to their respective goals established by these accounting bodies. But, the role and functions of an auditor are beyond those of the assurance approval auditors. The organizational decision making processes are dependent on various segments of information bases whereas these assurance providers audit a limited amount related to their interest. This conceptual paper attempts to show why an auditor is expected to provide a much higher level of assurance to the organizational executives amidst a plethora of risks faced by their information and databases and accordingly a framework is provided for auditors to be implemented in the cyber entities under their review.

Computer Science,Business

Celia Huber,Michael May,Olivia White

DOI: https://doi.org/10.69554/eklv3372

2021-03-01

Abstract:While most financial institutions have significantly enhanced their traditional risk management capabilities over the past decade, these organisations — and their boards of directors — are often less prepared when facing extreme and multi-faceted uncertainty. Preparing for uncertainty, particularly over long time horizons, is much more complex than preparing for particular risk events, as it means taking account of unknown unknowns. To help their organisations navigate extreme uncertainty, boards report that they are focusing on one topic above all: resilience. Leveraging insights from interviews with nearly 1,000 board members, this paper outlines the forms of resilience that should be bolstered and recommends three actions boards should take to build resilience. Specifically, boards should consider and promote operational resilience, organisational resilience, reputational resilience and business-model resilience, in addition to the more familiar financial resilience. To build resilience and prepare for uncertainty, this paper proposes that boards of financial institutions should take three key steps: first, they must understand the main drivers of uncertainty that will impact their operating environment. Secondly, based on these drivers of uncertainty, they should look at the specific financial and operational implications for the company and consider scenario and contingency planning. Thirdly, boards should set clear expectations for management — including setting an appropriate risk appetite, detecting risks and control weaknesses, developing responses, and setting clear metrics — and hold management accountable for strong performance and stewardship of risk.

Jagdish Pathak

DOI: https://doi.org/10.1108/02686900410530556

2004-05-01

Managerial Auditing Journal

Abstract:Auditors provide high assurance to executives amidst information and database risk. A framework is provided for auditors within cyber entities. The categories of e‐commerce, business‐to‐business, business‐to‐customers and mobile commerce use different core technologies. The common factor remains unchanged from the auditors' perception, i.e. risk and its potential to harm the integrity and accuracy of the data and decisions based thereon. E‐commerce requires audit to identify risks and show their impact on the information system. The American Institute of CPAs and Canadian Institute of Chartered Accountants jointly offer seals of assurance at Web and system levels. The limitations of these certifications are important for an auditor since they are set by these accounting bodies. The role and functions of an auditor are beyond those of the assurance approval auditors. Organizational decision‐making processes depend on segments of information bases, whereas these assurance providers audit a limited amount related to their interest.

management,business, finance

Vishal Sanjay

DOI: https://doi.org/10.55041/isjem01602

2024-04-23

Abstract:The role of auditors in fraud prevention and detection in companies is a critical aspect of corporate governance and financial integrity. Auditors, often external to the company, are responsible for reviewing financial records, internal controls, and operational processes to ensure accuracy, transparency, and compliance with regulatory standards. Fraud poses a significant threat to businesses, ranging from financial misstatements to cyber fraud. Auditors play a crucial role in identifying and preventing such fraudulent activities by applying their expertise in accounting principles, risk assessment, and forensic analysis. In their role, auditors are tasked with assessing a company's financial statements and internal controls to detect any signs of fraud or mismanagement. They conduct thorough examinations of financial records and transactions, looking for irregularities or inconsistencies that may indicate potential fraud. Auditors also evaluate the effectiveness of internal controls designed to prevent and detect fraud, assessing their design and implementation. Moreover, auditors often employ specialized techniques like data analytics and forensic accounting to identify patterns of suspicious activities or potential fraud schemes. By analyzing large datasets and transaction records, auditors can uncover anomalies that might otherwise go unnoticed. In addition to detecting fraud, auditors also contribute to its prevention by recommending improvements to internal controls and processes. They provide valuable insights and recommendations to management and stakeholders on how to strengthen governance practices and reduce the risk of fraud occurring within the organization. Overall, auditors play a critical role in safeguarding the integrity of financial reporting and maintaining trust in corporate operations. Their expertise and independence are essential in ensuring transparency and accountability in the face of evolving fraud risks and regulatory challenges.

Manoj Chatpibal,Wornchanok Chaiyasoonthorn,Singha Chaveesuk

DOI: https://doi.org/10.1108/medar-02-2023-1929

2023-09-19

Meditari Accountancy Research

Abstract:Purpose This study aims to develop a conceptual framework for the role of chief financial officer (CFO) in an ever-changing environment. As previous research focused on responding to specific crises, there have been theoretical and practical gaps in the role of CFO. The study's goal is to fill a critical gap by developing a comprehensive and integrated set of roles to assist the CFO in a constantly changing environment. Design/methodology/approach Using a grounded theory approach, semi-structured interviews and observations were conducted with 21 CFOs from various industries in Thailand, including foreign multinational corporations and domestic companies with international operations. CFOs were asked how they frame their roles in the face of an ever-changing environment and how they prepare for the future. Findings The iCFO model is developed, which identifies the critical “core” roles of the CFO in securing the business foundation, as well as the “future opportunities” roles that function as growth engines for long-term business strength. The research delves into the importance of integrity, ethical mindset and corporate governance in the role of the CFO. The iCFO model is designed to help guide future research and provide practical applications for CFOs in both domestic and international contexts. The term “core” refers to the CFO’s primary responsibilities, which include driving profitability, managing risks and optimizing business performance. The “future opportunities” component focuses on the roles that CFOs can play in strengthening the future of business by optimizing investment efficiency, driving digital transformation and being the CEO’s business partner. The findings also emphasized “integrity,” which must encompass all decisions, actions or recommendations made by the CFO. Originality/value The study offers unique perspectives on an emerging economy, providing new insights. Through interviews with 21 CFOs, it contributes empirical evidence on the development of roles in accounting and finance, emphasizing good governance practices. The findings highlight the integrated role of the CFO and their self-reflection on their value within the company. Significantly, the study's implications are relevant and applicable to a global audience, particularly in developing economies that prioritize growth. Future studies could incorporate integrated thinking into the iCFO model to address social, environmental and economic factors, making it more universally relevant. Additionally, exploring the adoption of the chief value officer context in developing markets could enable CFOs to expand their focus beyond financial metrics, embracing a comprehensive approach to value creation. By integrating these concepts into the iCFO model, CFOs can effectively drive sustainable and impactful business outcomes on a global scale.

Theresia Harrer,Othmar M Lehner

DOI: https://doi.org/10.1016/j.cosust.2023.101413

IF: 7.964

2024-01-28

Current Opinion in Environmental Sustainability

Abstract:This essay delves into the evolving role of audit engagements in assuring sustainability reports. While traditional and contemporary auditing focus primarily on evaluating financial data and governance structures to foster investors' trust and ensure financial market stability, the recent push for sustainability assurance stretches the auditors' role much further, requiring them to guide numerous stakeholders in navigating long-term (climate) risks and opportunities. We identify three pitfalls and overpromises in applying contemporary auditing principles to provide sustainability assurance: the feasibility of existing methodologies, the tension between social aspirations and economic realities, and the illusion of pseudo-assurance. These findings offer guidance to auditors and underscore the further need to revisit the paradigmatic foundation of auditing.

environmental sciences,green & sustainable science & technology

Hans Helbekkmo,Cindy Levy,Olivia White

DOI: https://doi.org/10.69554/ifvq1353

2019-09-01

Abstract:Banks today face an unprecedented pace of change and high uncertainty, dealing with significant threats ranging from bad employee behaviours to sophisticated cybercrime, trade wars and climate change. These trends severely challenge the formulaic approaches to enterprise risk management (ERM) in place at many banks today. McKinsey & Company’s work supporting leading global banks shows that ERM functions must transform themselves, so they can guide their institutions through threats and opportunities while simultaneously meeting the expectations of all stakeholders. This paper discusses the abilities that the ERM function of the future will need, across three dimensions: Delimiting the bank’s appetite for risk taking: supporting banks to set limits on risk taking dynamically, accounting for the institution’s values, strategy, skills and competition. Detecting new risks and weaknesses in controls: working with businesses and functions in an agile way to understand new threats and changes to existing ones. Deciding on the risk management approach: implementing more agile governance processes and approaches to risk mitigation and controls. Enhancing these abilities requires ERM to take four steps: Define its own vision and mandate for creating value for the bank. Shift its ways of working in core areas, with an agile approach that applies cross-functional teams and rapid decision making. Set its responsibilities beyond the core in areas of risk management that benefit from transparency and coordination with businesses and functions. Ensure the right ERM talent, with new capabilities and knowledge, including a better understanding of the business, digital innovations and agile management.

Abdul Rahman,Ratna Sari

DOI: https://doi.org/10.55098/tjbmr.v6i2.574

2023-07-31

Abstract:This study aims to examine current trends and emerging methodologies in risk management practices within financial markets. The study uses a thorough research design that includes quantitative data analysis and a review of existing literature to find essential trends in using quantitative risk assessment models, following the rules, and new technologies. Findings reveal a substantial increase in the use of Value-at-risk (VaR) and Conditional Value-at-Risk (CVaR) models, reflecting a shift towards data-driven and analytical approaches in risk management. Additionally, financial institutions are enhancing their risk governance frameworks to meet evolving regulatory requirements, highlighting the critical role of compliance in mitigating risks. Technological advancements such as artificial intelligence (AI) and blockchain are reshaping risk management practices by improving accuracy, transparency, and operational efficiency. The discussion underscores the alignment of these findings with fundamental risk management concepts and the necessity for market participants to adapt to dynamic market conditions, regulatory landscapes, and technological progress. The implications of this study suggest that embracing quantitative models, rigorous compliance measures, and technological innovations are essential strategies for effective risk management, enabling financial institutions to navigate uncertainties, mitigate risks, and seize growth opportunities in an increasingly complex financial environment.

Arlan Tahir

DOI: https://doi.org/10.61942/msj.v2i2.145

2024-05-27

Abstract:Auditing in the digital age has faced significant transformation, giving rise to a new paradigm that brings challenges and opportunities for audit practitioners. The method used in this research is qualitative research that aims to explore new perspectives in audit practice with a focus on accounting, by conducting a comprehensive literature review of recent publications in related academic journals, as well as current research reports in audit and accounting practice. The result of the study is that in the face of increasing complexity and volume of data, the use of technology and sophisticated data analysis is key in improving the efficiency, accuracy, and relevance of the audit process. However, adapting to rapid technological developments, data security issues, and maintaining audit quality remain challenges that need to be overcome. On the other hand, digital solutions enable better collaboration between auditors and clients, respond more quickly to business changes, and provide greater value-added services. Thus, the new paradigm in auditing presents significant challenges, but also opportunities to improve audit practices to be more effective, relevant, and adaptive in the changing digital era.

Computer Science,Business

Kishore Singh,Peter Best

DOI: https://doi.org/10.1108/par-07-2022-0103

2023-05-22

Pacific Accounting Review

Abstract:Purpose During a pandemic, with businesses implementing social distancing protocols and work-from-home strategies, the use of continuous controls monitoring (CCM) may add value to the internal audit function. This study aims to examine the use of CCM technologies and the impact on the internal audit function during a pandemic. Design/methodology/approach This study adopted a case study approach for this study because it focuses on questions of “how” and “what.” Case studies provided an opportunity for an in-depth analysis of the phenomena being investigated. Semi-structured interviews were used to collect data. This study did not use sampling. Instead, multiple case studies were used for data collection. Findings Based on the findings, this study makes several contributions to the literature, for example, in health-care evidence suggests the pandemic has caused internal audit to focus on risk areas. Other industries, such as retail, have invested in CCM. However, in all cases, education and preparedness (or the lack thereof) appeared to significantly influence uptake of CCM. Organizations that made prior investments in CCM technologies experienced greater acceptance in the face of changing demands. Training in emerging technologies is a key competency in supporting audit operations in changing environments. Research limitations/implications As the study was conducted with a small sample of cases, findings cannot be extrapolated nor generalized beyond the case study organizations. Practical implications This study found that several factors limit adoption, exploitation and further development of CCM technologies, such as lack of top management support, acceptance of CCM technologies and suitable education and training of internal audit staff. Originality/value This study addresses the issue of the value that CCM offers organizations and whether it is a silver bullet that the internal audit profession needs, particularly when physical access to organizations may be restricted. The COVID-19 pandemic placed considerable focus on digital access. Better IT systems and more data will allow organizations to better support employees, inform strategic and financial decisions and engage stakeholders. During the recovery phase, leveraging investments in CCM technologies will contribute to internal audits’ ability to help clients to manage organizational risk.

Tom Butler,Robert Brooks

DOI: https://doi.org/10.1111/risa.14240

Abstract:Organizational and risk cultures in the financial industry are argued to be the root cause of banking problems. It is concerning that financial regulators and practitioners still consider the industry to be seriously fragile in several respects, particularly to operational risks and risks associated with digital transformation and innovation-not that the risks of organizational misconduct have disappeared. The rescue of Credit Suisse in 2023 confirms this. This paper employs extant theories of organizational culture, learning, and action to critically evaluate the existing risk paradigm in banking and to highlight its deficiencies, which practitioners can only address by questioning the flawed assumptions and dysfunctional values and behaviors found to be endemic in banks. However, business and risk practitioners are also married to institutional approaches that focus on assessing risk and measuring historical losses to allocate regulatory capital, rather than forward-looking approaches to measure and manage risk. This requires a paradigm change. This paper presents a novel risk measurement and accounting methodology, Risk Accounting, to help underpin such change. Risk accounting measures risk exposure in quantitative and qualitative terms and can be implemented using an AI-enabled digital architecture that could solve endemic problems with risk data aggregation and analysis. Significantly, risk accounting enables a financial value to be placed on risk exposures at a granular level. This level of transparency provides an incentive to change behaviors in banks and support cultural change while providing a basis for a paradigm change in the way operational risk is managed.

Suresh Sood,Angela Kim

DOI: https://doi.org/10.18775/ijied.1849-7551-7020.2015.92.2001

2023-06-01

International Journal of Innovation and Economic Development

Abstract:Since the audit of the Parthenon in the 5th century, the audit has remained unchanged, focusing backward on financial statements. Global regulatory pressures are mounting for audit professionals and public accounting firms to make structural changes. In the 21st century, a new type of audit, the EPSAC value audit, is emerging, focusing on non-financial information, including operational data from company business functions and processes, and big external data, including social media. In addition, EPSAC focuses on the critical engagement areas of e-commerce, post-quantum cryptography, psychosocial hazards, artificial intelligence and machine learning, and tackling deepfakes. While a talent shortage of subject matter experts exists, auditors can use artificial intelligence knowledge bases to deliver the value audit. Such knowledge bases extend to the key EPSAC domains of cybersecurity and ESG, creating proxies for virtual team members. For example, industry 5.0, combining A.I. and IoT innovations, requires auditors to augment their skill sets with knowledge bases beyond traditional financial expertise to effectively navigate the complexities of the changing business environment, enhance the quality of audits, and provide valuable insights and assurance to stakeholders.

English Else

Saksham Sharma

DOI: https://doi.org/10.22214/ijraset.2022.47871

2022-12-31

International Journal for Research in Applied Science and Engineering Technology

Abstract:Abstract: Today's tax administrations lay increased emphasis on self-assessment and voluntary compliance, and they are moving the emphasis of tax enforcement from risk assessment and management to risk assessment and management. This is because (1) it would be inefficient to regularly audit low-risk, complying individuals and (2) no revenue administration can realistically monitor and inspect every taxpayer. This comprehensive and collaborative strategy aims to promote taxpayer compliance by systematically addressing compliance challenges as a component of long-term strategic planning. Indian tax administration (direct taxes) has adopted risk-based auditing utilising a computer-assisted scrutiny method gradually but progressively (CASS). Despite the establishment of CASS, human selection of tax audits has persisted. The revenue administration is a crucial link between the government and its people. Consequently, a trustworthy tax system is necessary for functional governance. Consequently, legislators are just now realising the need to establish legislation that simultaneously encourages corporate development and ensures complete, voluntary tax compliance. At this time, it is neither desired nor feasible to perform a comprehensive audit of every single taxpayer. Consequently, good compliance management is vital for tax administration. To encourage voluntary compliance, i.e., when taxpayers voluntarily comply with their tax duties without interference from tax authorities, it is essential to establish innovative auditing strategies based on risk management. Audits depend primarily on a systematic technique of choosing auditees that identifies and prioritises taxpayers who represent the greatest threat to the government in order to maximise their efficacy. This aids in fostering a more willing attitude of compliance. As was also recently observed, when the government is unable to properly combat tax evaders, it may lead to a range of concerns and problems. In view of the significance of tax compliance, I want to study methods to make it even more efficient. This article examines riskbased audits for tax compliance, concentrating on their definitions, the significance of key terminology, their application, and their effectiveness. In the essay's meatier middle portion, I will argue why such a system would be advantageous for emerging nations such as India, using specific examples from countries such as the Netherlands. In addition, a practical model may be created by researching the tax compliance rules of various nations and then constructing a risk management-based system.

Cormac Bryce,Simon Ashby,Patrick Ring

DOI: https://doi.org/10.1111/risa.14275

2024-01-31

Risk Analysis

Abstract:Board directing is a continuous process of risk analysis and control in response to the duality of risk as threat and opportunity. Judgments are made and remade to simultaneously reduce the potential for damaging threats (e.g., fraud, reputation damage), while exploiting opportunities (e.g., new product development, mergers and acquisitions). Adopting an institutional logics approach, we explore this process of risk analysis and control through the varied subject identities (e.g., directorial roles), risk management practices (the procedures and tools used to identify, assess, and control risk), and risk objects (the product of risk identification, assessment, and control, e.g., a risk matrix or register) of boards. We argue that the contingent interaction between these identities, practices, and objects inform the "risk logic" of a board, which may draw attention to the notion of risk as threat, risk as opportunity, or both threat and opportunity. Using the testimony of 30 executive and nonexecutive directors that represent 62 companies from a range of public, private, and third‐sector organizations, we contribute to the literature on the microfoundations of risk analysis in organizations by shining a light on how board directors understand, assess, control, and ultimately govern risk in organizations.

public, environmental & occupational health,mathematics, interdisciplinary applications,social sciences, mathematical methods

Melanie Evans,Vince Galloro

2009-09-21

Abstract:A year after the financial sector's meltdown, hospitals are still adjusting to the economic landscape. Where once they overlooked potential balance sheet stress from debt portfolios and the riskiness of their investments, they now obsess about risk and how to minimize it. "Systems are spending a lot more time on this than they were a year ago," says Kerry Rudy, of Ziegler Capital Markets.

S. Mohan

DOI: https://doi.org/10.2991/EMLE-18.2018.26

2018-12-01

Abstract:Recently, financial fraud of listed companies has triggered the re-evaluation of audit risks of them at home and abroad. Audit risks of those companies mainly form the subjects related to the generation of audit service chain and interest groups, including listed companies themselves, regulators, policy-making departments, stakeholders and accounting firms. It is helpful for public and interest groups to analyze the causes of relevant audit risks rationally, to effectively avoid them. Keywords—listed companies; certified public accountants; audit risks

Law,Economics,Business

Laura F. Spira,Michael Page

DOI: https://doi.org/10.1108/09513570310492335

2003-10-01

Abstract:The publication of the Turnbull guidance represented a radical redefinition of the nature of internal control as a feature of corporate governance in the UK, explicitly aligning internal control with risk management. This paper explores this change, using sociological perspectives on risk and its conceptualisation to frame the debate about internal control and risk management within the UK corporate governance arena – the most recent manifestation of an ongoing competition for the control of economic and social resources. The paper demonstrates that developments in corporate governance reporting requirements offer opportunities for the appropriation of risk and its management by groups wishing to advance their own interests. This is illustrated by a review of recent changes in internal audit.

Renu Gupta,

DOI: https://doi.org/10.62823/ijemmasss.5.4(iii).6342

2023-12-31

Abstract:Financial fraud stands as a formidable challenge within the global economic milieu. While extant literature has extensively scrutinized financial fraud reporting, scant attention has been directed towards exploring prevention strategies from the vantage point of auditors, particularly in burgeoning economies like India. This study delves into the adoption of accounting financial level reporting and the deployment of strategies for preventing financial fraud. Drawing from a sample comprising 199 auditors across various metropolitan cities in India, employing a convenience sampling methodology, this research elucidates the pivotal role of auditors' commentary in facilitating flexible and robust financial fraud reporting mechanisms. The findings underscore the indispensable role of auditors in the realm of fraud prevention, with both internal and external auditors frequently resorting to internal control reviews and enhancement strategies.

Mirwali Azizi,Musawer Hakimi,Frishta Amiri,Amir Kror Shahidzay

DOI: https://doi.org/10.37275/oaijss.v7i2.230

2024-02-15

Open Access Indonesia Journal of Social Sciences

Abstract:The study explores into the ramifications of digital transformation on IT audit practices, scrutinizing both the opportunities and challenges faced by organizations globally. Its objective is to bolster the efficacy of IT audit by identifying pivotal insights and furnishing recommendations for adaptation. By thoroughly examining existing literature and synthesizing key findings, the study endeavors to shed light on how organizations can harness IT audit to optimize the advantages of digital transformation while mitigating associated risks. Conducting an exhaustive literature review, the research probes the impact of digital transformation on IT audit, drawing from esteemed sources to dissect the evolving role, avenues for improvement, and obstacles encountered. The results underscore the imperative of recalibrating IT audit practices to effectively contend with burgeoning technological demands. The literature illuminates a significant metamorphosis in IT audit prompted by the adoption of digital technologies. While prospects include advancements in data analytics, automation, and strategic advisory roles, challenges loom large in the form of cybersecurity risks and resource constraints. Ultimately, the study underscores the exigency for IT audit to adapt to technological advancements while navigating intricate challenges to sustain its effectiveness. In conclusion, digital transformation necessitates a proactive reorientation of IT audit practices to confront emerging risks head-on. Leveraging data analytics and strategic roles bolsters effectiveness, yet addressing cybersecurity and resource constraints mandates proactive measures and strategic investments. Organizations can optimize the value of digital transformation by fortifying IT audit through proactive initiatives and nurturing talent development.