Search results

The advent of new enabling technologies and the surge in corporate scandals has combined to increase the supply, the demand, and the development of enabling technologies for a new system of continuous assurance and measurement. This paper positions continuous assurance (CA) as a methodology for the analytic monitoring of corporate business processes, taking advantage of the automation and integration of business processes brought about by information technologies. Continuous analytic monitoring-based assurance will change the objectives, timing, processes, tools, and outcomes of the assurance process.

The objectives of assurance will expand to encompass a wide set of qualitative and quantitative management reports. The nature of this assurance will be closer to supervisory activities and will involve intensive interchange with more of the firm s stakeholders than just its shareholders. The timing of the audit process will be very close to the event, automated, and will conform to the natural life cycle of the underlying business processes. The processes of assurance will change dramatically to being meta-supervisory in nature, intrusive with the potential of process interruption, and focusing on very different forms of evidential matter than the traditional audit. The tools of the audit will expand considerably with the emergence of major forms of new auditing methods relying heavily on an integrated set of automated information technology (IT) and analytical tools. These will include automatic confirmations (confirmatory extranets), control tags (transparent tagging) tools, continuity equations, and time-series cross-sectional analytics. Finally, the outcomes of the continuous assurance process will entail an expanded set of assurances, evergreen opinions, some future assurances, some improvement on control processes (through incorporating CA tests), and some improved data integrity.

A continuous audit is a methodology that enables independent auditors to provide written assurance on a subject matter, for which an entity’s management is responsible, using a series of auditors’ reports issued virtually simultaneously with, or a short period of time after, the occurrence of events underlying the subject matter.

• –

  CICA/AICPA Research Study on Continuous Auditing (1999)

CICA/AICPA Research Study on Continuous Auditing (1999)

Companies must disclose certain information on a current basis.

• –

  Corporate and Auditing Accountability, Responsibility, and Transparency (Sarbanes-Oxley) Act (2002)

Corporate and Auditing Accountability, Responsibility, and Transparency (Sarbanes-Oxley) Act (2002)

The purpose of this paper is to introduce the continuous auditing system based on continuous monitoring and its implementation methodology; also to present a systematic case study of actual continuous auditing systems implemented in the financial industry and the manufacturing industry.

The paper examines the method of implementing the continuous auditing system in the enterprise resource planning (ERP) environment, and suggests how the continuous auditing system can take firm root by looking at the successful introduction of the continuous auditing system in the financial industry and the manufacturing industry.

The proposed method of implementing the continuous auditing system has the 2stage approaches which can be applied to various kinds of companies in the ERP‐based environment. In addition, the proposed cases have the important practical implications acquired in the process of implementing the continuous auditing system in the financial industry and the manufacturing industry.

This study will help many corporations facing various types of corruption or circumvention of internal control, with their internal auditing, by showing them how to use the continuous auditing system to reinforce internal control. Also, it will make the independent auditor understand audited company's continuous monitoring system and lead to use the infrastructure for efficient and effective external auditing.

The proposed method and cases of implementing the continuous auditing system offer an innovative approach to auditing in the ERP‐based environment because it facilitates both internal auditor and external auditor to achieve the audit objectives efficiently and effectively.

The progressive computerization of business processes and widespread availability of computer networking make it possible to dramatically increase the frequency of periodic audits by redesigning the auditing architecture around Continuous Online Auditing (COA). Continuous auditing is viewed here as a type of auditing that produces audit results simultaneously with, or a short period of time after, the occurrence of relevant events. It is arguable that continuous auditing can be implemented only as an online system, i.e., a system that is permanently connected through computer networking to both auditees and auditors. This article proposes a research agenda for the emerging field of COA. First, the history, institutional background, feasibility of and some experiences in COA are briefly reviewed. Thereafter, a number of research issues relating to the architecture of COA, factors affecting the use of COA, and the major consequences of COA are presented. Finally, a selected number of research issues are highlighted as priorities for future research in COA.

The advances and continuous development of technology have been identified as significant influences on the accounting profession (AICPA, 1998). In the last twenty years, both academia and the accounting profession have been giving much attention to the demand and opportunity for audits to be performed automatically, continuously and in nearly real time. This paper presents a comprehensive review of continuous auditing research by providing an overview of the emergence and growth of the continuous auditing literature and classifying the extant continuous auditing research on the basis of four research characteristics indicated by a newly developed research taxonomy.

In the almost twenty years since Vasarhelyi and Halper (1991) reported on their pioneering implementation of what has come to be known as Continuous Auditing (CA), the concept has increasingly moved from theory into practice. A 2006 survey by PricewaterhouseCoopers shows that half of all responding firms use some sort of CA techniques, and the majority of the rest plan to do so in the near future. CA not only has an increasing impact on auditing practice, but is also one of the rare instances in which such a significant change was led by the researchers. In this paper we survey the state of CA after two decades of research into continuous auditing theory and practice, and draw out the lessons learned by us in recent pilot CA projects at two major firms, to examine where this unique partnership between academics and auditors will take CA in the future.

In this paper we report on the approach we have developed and the lessons we have learned in an implementation of the monitoring and control layer for continuous monitoring of business process controls (CMBPC) in the US internal IT audit department of Siemens Corporation. The architecture developed by us implements a completely independent CMBPC system running on top of Siemens’ own enterprise information system which has read-only interaction with the application tier of the enterprise system. Among our key conclusions is that “formalizability” of audit procedures and audit judgment is grossly underestimated. Additionally, while cost savings and expedience force the implementation to closely follow the existing and approved internal audit program, a certain level of reengineering of audit processes is inevitable due to the necessity to separate formalizable and non-formalizable parts of the program. Our study identifies the management of audit alarms and the prevention of the alarm floods as critical tasks in the CMBPC implementation process. We develop an approach to solving these problems utilizing the hierarchical structure of alarms and the role-based approach to assigning alarm destinations. We also discuss the content of the audit trail of CMBPC.

The advances and continuous development of technology have been identified as significant influences on the accounting profession (AICPA, 1998). In the last twenty years, both academia and the accounting profession have been giving much attention to the demand and opportunity for audits to be performed automatically, continuously and in nearly real time. This paper presents a comprehensive review of continuous auditing research by providing an overview of the emergence and growth of the continuous auditing literature and classifying the extant continuous auditing research on the basis of four research characteristics indicated by a newly developed research taxonomy.

Given the growing interest in the topic, both in practice and academia, it is timely and important to examine the concept of continuous assurance (CA) and the possible paths along which such services will evolve. There has been a tendency to see CA purely from the point of view of its technological enablers. As such, it has virtually been taken for granted that CA will follow as a matter of course. What has been less thought through is the business architecture that must underlie CA. In particular, we show that the key driver of CA is the demand for it. While there may be many economic transactions between the company and its stakeholders that could benefit from the provision of CA, there is no guarantee that CA is either cost effective—the only way of enhancing efficiency—or actually has to be continuous. Other factors that will affect the development of CA are the need for a new infrastructure to pay for it, as well as concerns about the independence of the assurors. We also identify some important research issues.

This paper aims to analyse the implementation challenges faced by internal audit departments of public sector organisations and central banks when implementing continuous auditing (CA) systems. CA aims to monitor internal control systems and risk levels on a continuous basis to support the audit process. This study identifies the implementation challenges of CA systems and proposes adequate countermeasures.

This study employs the design science information system research and the design science research process methodologies to ensure the rigor of this analysis. These research methodologies are adopted to tackle identified organisational problems and propose solutions. This methodological approach consists in the following phases: identification of the problems and motivation; definition of the objectives of the solution; research design and development; evaluation; communication.

This study detects several implementation challenges for public sector organisations and central banks and proposes adequate solutions. This study finds that these challenges are related to organisations’ complexity, institutional rigidity, potential threats to internal auditors’ independence and the issue of considering CA system as a “real time error correction” mechanism. The solutions involve the development of a business process focussed audit approach to enable internal auditors to analyse CA indicators, and the use of CA systems to support each phase of the audit process.

This study contributes to the scant strand of literature on internal auditing in central banks. Given the exceptional demand for guidance concerning internal auditing in the public sector and in central banks, this paper provides guidelines for these organisations to implement CA systems and to tackle implementation challenges. The analysis allows internal audit departments within central banks to better support their organisations in the achievement of their important regulatory and policy objectives.