Search results

This study aims to examine the extent to which external auditors (EAs) use the work of the internal audit function (IAF) based on the purpose of its primary activities. The authors rely on attribution theory, which suggests that individuals search for meaning when an event occurs. In this setting, the authors explore how the overall (assurance vs advisory) or specific (e.g. risk management and evaluating internal controls) focus of IAF activities influences perceived EA reliance on the IAF’s work.

The authors first explore the research question with data extracted from a broad, longitudinal survey conducted triennially by the national chapters of the Institute of Internal Auditors in Austria, Germany and Switzerland. The data includes responses from 2014, 2017 and 2020 administrations of the survey. The authors conduct a parallel survey with practicing EAs attending two training sessions of a European office of a global network firm. Hypotheses were tested using ordered logistic regression.

Among the chief audit executive (CAE) participants, the authors observe that a balanced or primarily assurance-related purpose of the IAF, relative to a primarily advisory-related purpose, is associated with higher perceived EA reliance. The authors observe similar perceptions of the extent of reliance among the EA participants.

With a unique data set of practicing internal auditors from three countries, coupled with a sample of EAs, to the best of the authors’ knowledge, this study is the first to examine differences in EA reliance across the IAF’s primary roles. The study relies on data from three European countries, which differs from prior EA reliance literature with a largely North American focus. Further, comparison between perceptions of EAs and CAEs is a novel approach and this paper’s findings suggest that perceptions of CAEs could be a reliable proxy for EA-intended behavior.

This paper aims to examine the impact of the assurance and advisory role of internal audit (ADRIA) on organisational, human and technical proactive measures to enhance cybersecurity (CS).

The questionnaire was used to collect data for 97 internal auditors (IAu) from the Gulf Cooperation Council countries. The authors used partial least squares (PLS) to test the hypotheses.

The results show a positive effect of the ADRIA on each of the organisational proactive measures, human proactive measures and technical proactive measures to enhance CS. The study also found a positive effect of the confirmatory role of IA on both human proactive measures and technical proactive measures to enhance CS. No effect of the confirmatory role of IA on the organisational proactive measures is found.

This study focused on only three proactive measures to enhance CS, and this study was limited to the opinions of IAu. In addition, the study was limited to using regression analysis according to the PLS method.

The results of this study show that managers need to consider the influential role of IA as a value-adding activity in reducing CS risks and activating proactive measures. Also, IAu must expand its capabilities, skills and knowledge in CS auditing to provide a bold view of cyber threats. At the same time, the institutions responsible for preparing IA standards should develop standards and guidelines that help IAu to play assurance and advisory roles.

To the best of the authors’ knowledge, this is the first study of its kind that deals with the impact of the assurance and ADRIA on proactive measures to enhance CS. In addition, the study determines the nature of the advisory role and the assurance role of IA to strengthen CS.

This study aims to explore the perception among the tourism stakeholders about Halal tourism competitiveness, challenges and opportunities in Aceh, a Sharia-law tourism destination.

This study adopted the qualitative research method and used in-depth interviews with purposively selected 13 Halal tourism stakeholders in Aceh.

This study found that the Indonesian Government has aggressively promoted Aceh as one of its main Halal tourist destinations. Despite its popularity in the growing and lucrative Muslim market, the understanding of Halal tourism in Aceh among its stakeholders is still at its infancy level. Besides, although Aceh is a Muslim-majority region, its Halal facilities and services, especially the Halal certification for their foodservice industry, are still lacking compared to their neighbouring competitors.

This study confirms the scarcity of stakeholder understanding and support challenged and undermined Aceh’s Halal tourism competitiveness. As such, this study sheds light on the original insight that stakeholders’ limited comprehension and backing can hinder Aceh’s Halal tourism competitiveness.

Security assurance evaluation (SAE) is a well-established approach for assessing the effectiveness of security measures in systems. However, one aspect that is often overlooked in these evaluations is the assurance context in which they are conducted. This paper aims to explore the role of assurance context in system SAEs and proposes a conceptual model to integrate the assurance context into the evaluation process.

The conceptual model highlights the interrelationships between the various elements of the assurance context, including system boundaries, stakeholders, security concerns, regulatory compliance and assurance assumptions and regulatory compliance.

By introducing the proposed conceptual model, this research provides a framework for incorporating the assurance context into SAEs and offers insights into how it can influence the evaluation outcomes.

By delving into the concept of assurance context, this research seeks to shed light on how it influences the scope, methodologies and outcomes of assurance evaluations, ultimately enabling organizations to strengthen their system security postures and mitigate risks effectively.

This research paper aims to investigate the effects of internal audit’s (IA) use of data analytics and the performance of consulting activities on perceived IA quality.

The authors conduct a 2 × 2 between-subjects experiment among upper and middle managers where the use of data analytics and the performance of consulting activities by internal auditors are manipulated.

Results highlight the importance of internal auditor use of data analytics and performance of consulting activities to improve perceived IA quality. First, managers perceive internal auditors as more competent when the auditors use data analytics. Second, managers perceive internal auditors’ recommendations as more relevant when the auditors perform consulting activities. Finally, managers perceive an improvement in the quality of relationships with internal auditors when auditors perform consulting activities, which is strengthened when internal auditors combine the use of data analytics and the performance of consulting activities.

From a theoretical perspective, this research builds on the IA quality framework by considering digitalization as a contextual factor. This research focused on the perceptions of one major stakeholder of the IA function: senior management. Future research should investigate the perceptions of other stakeholders and other contextual factors.

This research suggests that internal auditors should prioritize the development of the consulting role in their function and develop their digital expertise, especially expertise in data analytics, to improve perceived IA quality.

This research tests the impacts of the use of data analytics and the performance of consulting activities on perceived IA quality holistically, by testing Trotman and Duncan’s (2018) framework using an experiment.

The purpose of this paper is to synthesize insights from the emerging work in accounting on greenwashing and sustainability assurance and propose an agenda for future research in this area.

This article offers an original analysis of papers published on greenwashing and sustainability assurance research in the field of accounting. It adopts a systematic literature review and a narrative approach to analyse the dominant themes and key findings in this new and rapidly evolving field. From this overview, specific avenues for future research are identified.

In the past few years there has been a substantial spike in concern relating to greenwashing among academics, practitioners, regulators and society. This growing concern has only partly been reflected in the research literature. To date, research has primarily focused on: (1) the characteristics of firms adopting sustainability assurance, (2) the challenges facing sustainability auditors, (3) the development of appropriate assurance standards and regulations, and (4) capital market responses to greenwashing and sustainability auditing/assurance. Three key future research issues with respect to greenwashing are identified: (1) the future of standard-setter attempts to regulate greenwashing, (2) professional jockeying in sustainability reporting assurance, and (3) capital market opportunities and challenges relating to greenwashing and assurance.

Despite the profound economic and reputational impact of greenwashing and the rapid development of sustainability assurance services, research in accounting remains fragmented and emergent. This review identifies avenues offering considerable scope for inter-disciplinarity and bridging the divide between academia and practice.

This study addresses the need for a theory-guided, rich, descriptive account of research data repositories' (RDRs) understanding of data quality and the structures of their data quality assurance (DQA) activities. Its findings can help develop operational DQA models and best practice guides and identify opportunities for innovation in the DQA activities.

The study analyzed 122 data repositories' applications for the Core Trustworthy Data Repositories, interview transcripts of 32 curators and repository managers and data curation-related webpages of their repository websites. The combined dataset represented 146 unique RDRs. The study was guided by a theoretical framework comprising activity theory and an information quality evaluation framework.

The study provided a theory-based examination of the DQA practices of RDRs summarized as a conceptual model. The authors identified three DQA activities: evaluation, intervention and communication and their structures, including activity motivations, roles played and mediating tools and rules and standards. When defining data quality, study participants went beyond the traditional definition of data quality and referenced seven facets of ethical and effective information systems in addition to data quality. Furthermore, the participants and RDRs referenced 13 dimensions in their DQA models. The study revealed that DQA activities were prioritized by data value, level of quality, available expertise, cost and funding incentives.

The study's findings can inform the design and construction of digital research data curation infrastructure components on university campuses that aim to provide access not just to big data but trustworthy data. Communities of practice focused on repositories and archives could consider adding FAIR operationalizations, extensions and metrics focused on data quality. The availability of such metrics and associated measurements can help reusers determine whether they can trust and reuse a particular dataset. The findings of this study can help to develop such data quality assessment metrics and intervention strategies in a sound and systematic way.

To the best of the authors' knowledge, this paper is the first data quality theory guided examination of DQA practices in RDRs.

This paper aims to examine the processes of sustainability reporting assurance (SRA) and the influence they have on shaping perception from disclosures. Given the evidence of inconsistencies and ambiguities in assurance processes, this paper examines how legitimacy is attained and maintained at different stages of SRA.

Evidence collected from 23 semi-structured interviews with assurance providers (APs), consultants, professionals and non-governmental organisations (NGOs) (non-APs) was used to conduct a thematic analysis from the perspectives of interviewees.

APs and non-APs are united in recognising the value of SRA, although, perspectives on transparency between the two groups differ. Experience and industry knowledge are essential to SRA delivery with non-APs preferring accounting APs. Nevertheless, non-APs are concerned about the role of companies in deciding assurance scope, as it can affect scrutiny. APs favour data accuracy (as opposed to data relevance) assurance due to team dynamics and internal review influences, with the latter also restricting assurance innovation. APs are interested in accessing better evidence and stakeholder engagement evaluations. Providing advisory services was not rejected by all APs. The perspectives of APs and non-APs demonstrate how progress in SRA has gained pragmatic legitimacy with noticeable gaps that serve to undermine attainment of moral legitimacy.

SRA is a developing practice that will adopt changes as it continues to mature; some of these changes could impact findings in this research. General perspectives on SRA were sought from interviewees, this affected the ability for an in-depth focus on any of the range of interesting SRA issues that arose over the course of the research. Interviews were conducted with relevant parties in the SRA space that operate in the UK. Perspectives from parties outside the UK were not solicited.

Companies make an important decision to commission SRA. Findings in this research have highlighted specific non-APs issues of concern that can be useful in structuring operations and reporting regimes to facilitate assurance procedures. The findings will also be helpful to APs as they can direct more emphasis on stakeholder concerns towards demonstrating greater stakeholder accountability. Regulatory and standard setters can enact appropriate policies that can potentially drive the practice forward for assessment of cognitive legitimacy.

The findings provide relevant account of stakeholder voices on the quality of corporate disclosures that has a direct effect on the wellbeing of communities and sustainability of societies. Collective stakeholder input on expectations can shape sustainability discourse.

This research demonstrates the applicability of financial audit quality indicators in SRA processes, extends the debate around the effectiveness of new audit fields and highlights the challenges of maintaining legitimacy with different audiences.

This paper aims to examine the roles of quality managers at community colleges, their experiences balancing accountability and improvement and their insights into the future of quality assurance.

This phenomenological, qualitative study used semi-structured interviews with eight community college quality managers to investigate their roles, experiences and perspectives. A reflexive thematic approach was used to analyze the interview data.

Four themes were identified from participant responses: quality managers frame and enable program quality, quality managers drive program change, quality managers cultivate a culture of quality and quality managers seek system change. The findings illustrate the roles played by quality managers as they work to improve college education at program, institution and system-wide levels.

The decision of participants to accept the recruitment invitation might reflect particular attitudes, perspectives or experiences.

Quality assurance has emerged as a key mechanism for ensuring postsecondary programs are current, relevant and meeting the evolving needs of students and employers. This study advances the understanding of how quality assurance processes play out at the operational level and explores the experiences of quality managers as they navigate various quality tensions.

Quality managers play key roles in leading, evaluating and influencing quality assurance processes in postsecondary education yet they are underrepresented in the literature. The findings of this study shed new light on the aspirational and influential roles they play in advancing quality assurance.

Firms are increasingly pressured to comply with mandatory supply chain transparency (SCT) regulations. Drawing on information processing theory (IPT), this study aims to show how blockchain technology can address information uncertainty and equivocality in assuring regulatory compliance in an interorganizational network (ION).

IPT is applied in a single case study of an ION in the mining industry that aimed to implement blockchain to address mandatory SCT regulations. The authors build on a rich proprietary data set consisting of interviews and substantial secondary material from actors along the supply chain.

The case shows that blockchain creates equality between actors, enables compliance and enhances efficiency in an ION, reducing information uncertainty and equivocality arising from conflict minerals regulation. The system promotes engagement and data sharing between parties while protecting commercial sensitive information. The lack of central authority prevents larger partners from taking control. The system provides mineral provenance and a regulation-compliant record. System cost analysis shows that the system is efficient as it is inexpensive relative to volumes and values of metals transacted. Issues were identified related to collecting richer human rights data for assurance and compliance with due diligence regulations.

The authors provide some of the first evidence in the operations and supply chain management literature of the specific architecture, costs and limitations of using blockchain for SCT. Using an IPT lens in an ION setting, the authors demonstrate how blockchain-based systems can address two key IPT challenges: environmental uncertainty and equivocality.