Search results

In the almost twenty years since Vasarhelyi and Halper (1991) reported on their pioneering implementation of what has come to be known as Continuous Auditing (CA), the concept has increasingly moved from theory into practice. A 2006 survey by PricewaterhouseCoopers shows that half of all responding firms use some sort of CA techniques, and the majority of the rest plan to do so in the near future. CA not only has an increasing impact on auditing practice, but is also one of the rare instances in which such a significant change was led by the researchers. In this paper we survey the state of CA after two decades of research into continuous auditing theory and practice, and draw out the lessons learned by us in recent pilot CA projects at two major firms, to examine where this unique partnership between academics and auditors will take CA in the future.

The advent of new enabling technologies and the surge in corporate scandals has combined to increase the supply, the demand, and the development of enabling technologies for a new system of continuous assurance and measurement. This paper positions continuous assurance (CA) as a methodology for the analytic monitoring of corporate business processes, taking advantage of the automation and integration of business processes brought about by information technologies. Continuous analytic monitoring-based assurance will change the objectives, timing, processes, tools, and outcomes of the assurance process.

The objectives of assurance will expand to encompass a wide set of qualitative and quantitative management reports. The nature of this assurance will be closer to supervisory activities and will involve intensive interchange with more of the firm s stakeholders than just its shareholders. The timing of the audit process will be very close to the event, automated, and will conform to the natural life cycle of the underlying business processes. The processes of assurance will change dramatically to being meta-supervisory in nature, intrusive with the potential of process interruption, and focusing on very different forms of evidential matter than the traditional audit. The tools of the audit will expand considerably with the emergence of major forms of new auditing methods relying heavily on an integrated set of automated information technology (IT) and analytical tools. These will include automatic confirmations (confirmatory extranets), control tags (transparent tagging) tools, continuity equations, and time-series cross-sectional analytics. Finally, the outcomes of the continuous assurance process will entail an expanded set of assurances, evergreen opinions, some future assurances, some improvement on control processes (through incorporating CA tests), and some improved data integrity.

A continuous audit is a methodology that enables independent auditors to provide written assurance on a subject matter, for which an entity’s management is responsible, using a series of auditors’ reports issued virtually simultaneously with, or a short period of time after, the occurrence of events underlying the subject matter.

• –

  CICA/AICPA Research Study on Continuous Auditing (1999)

CICA/AICPA Research Study on Continuous Auditing (1999)

Companies must disclose certain information on a current basis.

• –

  Corporate and Auditing Accountability, Responsibility, and Transparency (Sarbanes-Oxley) Act (2002)

Corporate and Auditing Accountability, Responsibility, and Transparency (Sarbanes-Oxley) Act (2002)

In this paper we report on the approach we have developed and the lessons we have learned in an implementation of the monitoring and control layer for continuous monitoring of business process controls (CMBPC) in the US internal IT audit department of Siemens Corporation. The architecture developed by us implements a completely independent CMBPC system running on top of Siemens’ own enterprise information system which has read-only interaction with the application tier of the enterprise system. Among our key conclusions is that “formalizability” of audit procedures and audit judgment is grossly underestimated. Additionally, while cost savings and expedience force the implementation to closely follow the existing and approved internal audit program, a certain level of reengineering of audit processes is inevitable due to the necessity to separate formalizable and non-formalizable parts of the program. Our study identifies the management of audit alarms and the prevention of the alarm floods as critical tasks in the CMBPC implementation process. We develop an approach to solving these problems utilizing the hierarchical structure of alarms and the role-based approach to assigning alarm destinations. We also discuss the content of the audit trail of CMBPC.

Given the growing interest in the topic, both in practice and academia, it is timely and important to examine the concept of continuous assurance (CA) and the possible paths along which such services will evolve. There has been a tendency to see CA purely from the point of view of its technological enablers. As such, it has virtually been taken for granted that CA will follow as a matter of course. What has been less thought through is the business architecture that must underlie CA. In particular, we show that the key driver of CA is the demand for it. While there may be many economic transactions between the company and its stakeholders that could benefit from the provision of CA, there is no guarantee that CA is either cost effective—the only way of enhancing efficiency—or actually has to be continuous. Other factors that will affect the development of CA are the need for a new infrastructure to pay for it, as well as concerns about the independence of the assurors. We also identify some important research issues.

Compare and contrast how the accounting, organizational behavior and other literatures analyze sunk costs. Sunk costs form a key part of the decision-making component of the management accounting literature, which generally include previously incurred and unrecoverable costs. Management accountants believe, since current or future actions cannot change sunk costs, decision makers should ignore them. Thus, ongoing fixed costs or previously incurred sunk costs, while relevant for matters of accountability such as costing, income determination, and performance evaluation are irrelevant for most short- and long-term decisions. However, the organizational behavior literature indicates that sunk costs affect decision makers’ actions – especially their emotional attachments to the related project and the asymmetry of attitudes regarding the recognizing of losses and gains. Called the “sunk cost effect” or “sunk cost fallacy,” this conflict in sunk costs’ underlying nature reflects one element of incoherence in contemporary accounting discourse. We discuss this sunk cost conflict from an accounting and a philosophical perspective to denote some ambiguities that decision usefulness and accountability introduces into accounting discourse.

Review, summarize and analyze the above literatures

Managerial accountants can apply many lessons from the various literature sources.

We also show how differing opinions on how to treat sunk costs impact a firm’s decision-making process both economically and socially.