Search results

Islamic financial institutions (IFIs) are required to establish a Shariīʿah Governance Framework (SGF) to strengthen their Sharīʿah-compliance mechanism and ensure that all relevant IFI regulations are in line with Sharīʿah rules and principles. Effective implementation of the Shariīʿah-compliance function will further promote stakeholder confidence, as well as the integrity of IFIs, by reducing Shariīʿah non-compliance risks. This study aims to examine the internal control framework developed by the Committee of Sponsoring Organizations of the Treadway Commission (COSO) and explore the extent to which it can be incorporated in the Sharīʿah-compliance function of IFIs.

This study adopts a qualitative method of inquiry, utilizing the inductive method and content analysis to build comprehensive knowledge that will assist in exploring the framework of COSO methodology and the extent to which it can be adopted by IFIs.

The findings indicate that the existing frameworks of Sharīʿah governance, whether that of the Accounting and Auditing Organization for Islamic Financial Institutions (AAOIFI) or Bank Negara Malaysia (BNM), need to be further developed. Therefore, the adoption of COSO methodology in the internal Sharīʿah audit of IFIs, as suggested by AAOIFI, is not only possible but desirable. The study also finds that the COSO framework places the highest priority on risk management in that it makes it an integral part of the decision-making process in all the institution's activities. As a result, incorporating the comprehensive COSO risk management structure within the Sharīʿah-compliance function will enhance risk management in IFIs.

This study highlights the importance of the COSO internal control framework and examines its components, principles and the possibility of its adoption by IFIs. The findings of this study are expected to contribute to enhancing the Sharīʿah-compliance function of IFIs.

The existence of internal control for Sharīʿah-compliance promotes reasonable assurance that the Islamic financial institution’s (IFI’s) objectives are achieved in the following categories, namely, the effectiveness and efficiency of operations, the reliability of financial reporting and the level of compliance with applicable laws and regulations, as well as accounting and auditing standards. Sharīʿah non-compliant income (SNCI) is an important issue in IFIs’ operations. Thus, the purpose of this paper is to identify issues related to governance and internal control of SNCI in selected IFIs in Malaysia.

This research uses a case study approach to gather data on the measures of governance and risk management in relation to the internal control for SNCI in IFIs. Interviews were conducted with officers of the Sharīʿah and internal audit departments on internal control practices regarding SNCI.

Regulator’s guidelines on SNCI are simple and brief, lacking rigour in terms of governance, risk management and audit procedures. The section on SNCI is only a brief statement within the Bank Negara Malaysia’s Guidelines on Financial Reporting for Islamic Banking Institutions and also in the Operational Risk Integrated Online Network system operated by IFIs. Most of the respondents in the interviews suggested that there should be a proper guideline in determining the classification of SNCI. Second, although IFIs have established the purification account to manage SNCI, the real practice varies from one IFI to another. Third, although there are supposedly documented procedures established in relation to management and administration of SNCI, the following events still occur in practice, namely, no authorisation from the Sharīʿah Committee (SC) on various types of income channelled to the SNCI account; unauthorised use of SNCI for other purposes; SNCI not being reported in the annual financial reports; and distribution of SNCI prior to obtaining the SC’s consent. Fourth, there is an absence of Sharīʿah risk assessment conducted on operational risk by IFIs to identify any potential Sharīʿah non-compliant event.

This research contributes to the importance of Islamic corporate governance theory and Sharīʿah risk management, as well as strengthening the case for reporting SNCI to shareholders. It also contributes to the body of knowledge on the capability of the management in managing the internal control system of IFIs’ SNCI.

A new internal control assessment matrix is proposed for Sharīʿah-compliance in IFIs.

The aim of this paper is to provide additional insights on the association between real earnings management (REM) and crash risk, particularly from the perspective of an emerging market economy. It also examines the moderation role that internal and external corporate governance may play in this area.

Relying on archival data from the RESSET and CSMAR databases over a timeframe from 2010 to 2018 of China listed company, the authors test the hypotheses by regressing common measures of crash risk on the treatment variable (REM) and crash risk control variables identified in the prior crash risk literature. The authors also introduce monitoring proxies (internal controls as an internal governance and institutional ownership as an external governance) and assess how effective internal and external governance moderate the relation between REM and stock price crash risk.

The results suggest firms with higher REM have a significantly greater stock price crash risk, and that this association is mitigated by external monitoring. That is, greater institutional ownership, particularly pressure insensitive owners, mitigates the impact of REM on stock price crash risk. However, internal control does not mitigate the association between REM and stock price crash risk.

Following the passage of the Sarbanes–Oxley (SOX) Act, prior research has documented an increase in the use of REM and a positive association between REM and cash risk. The authors demonstrate that they persist in one of the largest emerging markets where institutional regulations, market conditions and corporate behaviors are different from those in developed markets. Also, the assessment of the moderation effect of internal and external governance mechanisms could have meaningful implications for investors and regulators in Chinese and other emerging markets.

This study aims to identify the factors that lead non-financial companies listed in the UK to use an internal audit function (IAF) as a monitoring mechanism. Although the use of an IAF in the UK is voluntary, no prior research has examined the drivers for using one.

Financial and non-financial data were collected from the annual reports of 332 UK non-financial companies listed on the London Stock Exchange (LSE) Main Market. Univariate tests and multivariate logistic regression tests were used to test the research hypotheses. A theoretical framework based on both agency theory and transaction cost economics (TCE) theory was used to explain the economic factors affecting the use of an IAF.

The study provides evidence that firm size, level of internal risks, agency problem between owners and managers and existence of an effective audit committee are associated with the existence of an IAF. Thus, the need to have strong internal control and risk management systems and to reduce both internal and external agency costs drives companies to have an IAF. These results suggest the importance of IAF as an internal corporate governance tool and the effectiveness of UK governance regulations in monitoring the effectiveness of internal control systems.

Given the importance of the IAF’s corporate governance role, the study provides some policy implications. Regulators should pay more attention to the issue of maintaining an IAF, especially by large companies, the relationship between the IAF and other governance parties, especially the audit committee, and the disclosure of more relevant information about the IAF’s characteristics and practices.

This is the first study to examine the factors affecting the existence of the IAF within the UK’s distinctive regulatory approach of “comply or disclose reasons”. Furthermore, it provides a theoretical framework that explains how both the agency theory and TCE theory can interpret the adoption of internal audit.

This study aims to understand independence in internal auditing by investigating how internal auditor independence is constructed when analysed in its corporate governance context.

A critical discourse analysis (CDA) of the corporate governance reports of Swedish large stock market listed non-financial companies, for three consecutive years, is undertaken, using a theoretical lens of organisational embeddedness and operational coupling to understand independence as a situated practice.

The study develops four archetypes of internal auditor independence – autarchic, instrumental, symbiotic and subservient – and discusses each archetype's implications for independence, related to tripartite relations with management and the audit committee, regarding who has the mandate to direct work and how the work is done. It finds that internal auditors always have a capacity to be independent. Although they are not independent in relation to agents in the subservient archetype, they are independent of those down the organisational chain of command, suggesting independence is both situational and relational.

The analysis contributes a novel approach to the literature and develops a conception of independence using the dimensions of embeddedness and coupling. The archetypes offer an analytical framework for future studies on independence.

Internal auditors may understand their practice differently through the archetypes that result from this study.

Internal auditors' power relations within corporate governance further an understanding of the pressures on internal auditors and their role.

This study contributes new knowledge on the situatedness of independence by showing how internal auditors are embedded and coupled helps build their independence.

Internal control systems are critical to an organization's efficiency and promotes the adherence to norms and rules. The purpose of this study is to evaluate the impact of internal control systems on banking industry effectiveness.

Data were collected from 15 commercial and 20 rural banks. The hypothesized relationships were supported by the data. A structural equation modeling was applied in testing the conceptual model and hypothesis. Confirmatory factor analysis was conducted to establish validity and reliability of the dimensions.

The results show that organizational effectiveness was significantly impacted by three dimensions of internal control systems: control activities, control environments and risk assessment. However, the impact of monitoring of control on organizational effectiveness was not significant. The results also show a nonsignificant impact of information and communication on organizational effectiveness.

Since the current study concentrated on the banking sector with its distinct characteristics, the generalizability of the conclusions may be limited.

The study's findings may aid decision-makers and stakeholders in the adoption, designing and implementation of proactive internal control system to enhance operational efficiency, effectiveness and competitive advantage.

The study advances the literature by empirically evidencing that internal control systems impact organizational effectiveness.

Procuring relief products and services is a challenging process for humanitarian organizations (HOs), yet it accounts for approximately 65% of relief operations’ costs (Moshtari et al., 2021). This paper aims to examine how procurement internal controls, materials and purchasing procedure standardization influence information integration and procurement performance.

In this study, partial least square structural equation models and multigroup analysis were used to analyze data collected from 170 HOs.

Procurement internal controls and material and purchasing procedure standardization fully mediate between information integration and procurement performance.

The study focuses only on HOs. Since humanitarian procurement projects take place over a period of several years, it is difficult to capture the long-term effects of information integration, procurement internal controls, material and purchasing procedure standardization and procurement performance. In this regard, a longitudinal study could be undertaken, provided that the required resources are available.

Procurement managers should implement information integration practices within acceptable procurement internal controls and standardize material and purchasing procedures to boost procurement performance.

By integrating information through procurement internal controls and standardizing material and purchasing procedures, procurement performance in a humanitarian setting can be systematically optimized.

This study aims to explore the formation of municipal risk management (RM) and the reasons for the differences of RM practices between the seven biggest cities in Finland.

The empirical data of this comparative qualitative case study comprises 33 interviews conducted with municipal managers. Supplementary material includes documentary material on municipal rules governing RM as well as annual reports and risk tools used in the municipalities.

This study found differences in cities with respect to when, how and why RM practices had evolved. The results indicate that differences in RM practices and development paths between cities are largely explained by the differences in the original reason to initiate RM, time span since its introduction, professional and educational backgrounds of risk managers, local risk events and accounting infrastructure such as RM tools developed in a city. These findings also suggest that even within the same municipality, different functions can be at different phases regarding RM.

This study reports on RM as a new form of accounting in the field of Finnish municipalities. This highlights how fairly uniform considerations at the field level lead to variation in the elaboration of RM practices at the municipal level. The study finds that different paths in the development of local RM involve iterative evolution between the phases of emergence, largely explained by contextual differences. This study contributes to understanding the emergence of new accounting forms in a municipal RM context.

This article aims to identify management practices that evidence how internal control have been considered essential, from the edition of the State Constitutional Amendment no. 75 of 2012, within the public administration of the executive branch of the State of Ceará, during the period 2012–2021.

The study relates the identified management practices to COSO (The Committee of Sponsoring Organizations) methodology “Internal Environment” component categories. The research is classified as basic, exploratory and bibliographic, on the theme of internal control in scientific articles published between 2015 and 2021, and documental, carried out through official documents, including the 27 Brazilian constitutions.

Existence of management practices that corroborate the essentiality of internal control in Ceará.

The study is limited to evidencing the control practices implemented in Ceará, not evaluating them as to their quality.

Contributions on control on constitutional-legal bases for other Brazilian Federation States.

Possibility of introducing the research theme into various branches of scientific knowledge, such as political science and contributing to public organizations to implement policies with the proper application of resources for the benefit of society.

The originality of the research is in demonstrating the essentiality of internal control in the State of Ceará, from the edition of management acts performed by the executive branch, based on Constitutional Amendment 75 of 2012, which did not become a dead letter of the law, enabling other states of the federation to do the same.

While the three lines model (TLM) provides an organizational structure to execute risk and control duties, research and practice show limitations in the model's implementation. These limitations result in governance issues. Such issues, together with control weaknesses, could be addressed by leveraging properties of distribution, transparency, and immutability of blockchain technology. To this end, in this paper the authors propose a conceptual control framework based on blockchain technology to augment control practice.

The design of the resulting blockchain-based control framework (BBCF) and its prototype, based on the design science research methodology (DSRM), is presented and discussed in terms of the potential impact in the context of the identified problems within the TLM.

One potential outcome of BBCF could be to redefine the scope and boundaries of some of the activities in audit and control practices from a more static to a more dynamic and prospective role. In a larger context of improving governance practices, the BBCF could set the path for a more inclusive and participatory interaction between the different governance actors of an organization.

However, this assumes that blockchain is more widely adopted despite its complexity and rigidity.

BBCF covering both a conceptual model design and a reference implementation provides an innovation in audit and control. BBCF could include all relevant stakeholders who have an interest in corporate governance and control activities, including the regulators.

The contribution intends to serve both as a starting point for discussing the evolution of audit and control practice based on blockchain technology, as well as an initial actionable prototype for experimentation and further development.