The impact of an IT governance framework on the internal control environment

2017 ◽  
Vol 27 (1) ◽  
pp. 19-41 ◽  
Author(s):  
Michele Rubino ◽  
Filippo Vitolla ◽  
Antonello Garzoni
Keyword(s):  
Control System ◽  
Internal Control ◽  
It Governance ◽  
Control Environment ◽  
Content Type ◽  
Accounting Information Systems ◽  
Governance Framework ◽  
Environment Assessment ◽  
Internal Control System ◽  
The Impact

Purpose The purpose of this paper is to analyze how an IT governance framework [Control Objectives for Information and related Technology (COBIT)] influences the control environment and the internal control system. In particular, it aims to illustrate how the COBIT’s structure and processes impact on the seven categories of factors that compose the control environment. Design/methodology/approach This paper aims to highlight how an IT governance framework with its processes enables to improve the control environment assessment and implementation. Findings The analysis indicates that the implementation of the COBIT framework provides some indications for managers and auditors, which must implement or assess internal control system. Practical implications The adoption of the framework allows managers to focus effectively on integrating, aligning and linking processes. This improves the understanding of the key aspects connected to the control environment. In addition, the adoption of the framework allows overcoming some limitations regarding the Committee of Sponsoring Organizations framework. Originality/value This paper addresses an area of relevance to both practitioners and academics. This analysis focuses on Accounting Information Systems themes and, through the examination of an IT governance framework, suggests solutions and tools than can help managers and auditors to address the control environment assessment.

How IT controls improve the control environment

2017 ◽  
Vol 40 (2) ◽  
pp. 218-234 ◽  
Author(s):  
Michele Rubino ◽  
Filippo Vitolla ◽  
Antonello Garzoni
Keyword(s):  
Control System ◽  
Internal Control ◽  
Three Dimensions ◽  
Control Environment ◽  
Content Type ◽  
Accounting Information Systems ◽  
Organizational Controls ◽  
Internal Control System ◽  
The Individual ◽  
Key Aspects

Purpose The purpose of this paper is to analyze how Information technology (IT) controls influence the control environment’s components and the internal control system. Design/methodology/approach This paper aims to highlight how IT controls enable to improve the control environment assessment and implementation. Findings The analysis indicates that the implementation of the IT controls (IT organizational controls, IT process controls and IT soft variables controls) provides some indications for managers and auditors, who must implement or assess internal control system. A joint use of the three dimensions of IT control contributes to a better assessment of the individual components of the control environment. IT controls help managers to develop the design of the organizational structure and to identify the key processes to achieve the internal control objectives and to mitigate firm’s risk. Practical implications The examination of three IT control dimensions allows managers to expand their knowledge about these types of controls and change the way they approach technology-based processes and associated risks. This improves the understanding of the key aspects connected to the control environment. The paper provides a list of the relevant activities that affect the three types of IT controls. This is useful for managers to begin to frame the specific controls inside the three dimensions of IT control. Originality/value This paper addresses an area of relevance to both practitioners and academics. This analysis focuses on accounting information systems themes and, through the examination of the IT controls, allows a better understanding of the hard and soft elements of the control environment.

Customer data security and theft: a Malaysian organization’s experience

2019 ◽  
Vol 27 (1) ◽  
pp. 81-100
Author(s):  
Mohd Aizuddin Zainal Abidin ◽  
Anuar Nawawi ◽  
Ahmad Saiful Azlin Puteh Salin
Keyword(s):  
Control System ◽  
Internal Control ◽  
Advanced Technology ◽  
Close Monitoring ◽  
Content Type ◽  
Customer Data ◽  
Internal Control System ◽  
Data Theft ◽  
The Impact

PurposeThis study aims to identify weaknesses in current internal control systems in protecting customer data and the drivers that motivate employees to steal customer data and the impact of customer data theft on the organization.Design/methodology/approachA case study approach was taken to investigate and analyze internal control system weaknesses. One organization that involved investor and treasury services was selected as a case study in this research. A mixed method of data collection, specifically survey questionnaires and observations, was used.FindingsThis study revealed that employees are aware of the policy to protect customer data in their organization. Ironically, customer data theft still occurred despite the company having an internal control system. The main concern was the attitude of the employees to adhere to the policies in place, which becomes the major cause of internal control violation. Employees tend to ignore policies and standard operating procedures, providing opportunities for data theft and fraud to occur, although they realize this will result in a severe impact on the reputation of a company.Research limitations/implicationsThe results provide further confirmation of the fraud triangle theory, i.e. opportunity on the possible causes of the data theft and fraud, supporting prior empirical research and surveys conducted by researchers and global professional firms on fraud. This study, however, was conducted on only one organization with limited participation from employees because of the sensitivity of the nature of the topic.Practical implicationsThis study provided recommendations that can be a reference for companies and regulatory bodies in preventing customer data theft cases, such as regular training and awareness campaigns to the staff, stringent recruitment policies, close monitoring on the accessibility of customer data and continuous use of advanced technology to prevent a data breach.Originality/valueThis study is original, as it focuses on an organization that operates in the financial services industry, which is one of the most attacked sectors for data theft and cybercrime activity globally. Furthermore, this kind of research is rare in fraud literature, particularly in developing markets such as Malaysia. The findings of this study are inferred from the direct observation of the organizational and employee work environments, activities and behaviors, which are private and confidential and difficult to access by researchers for publication in academic journals.

scholarly journals EVALUASI PENERAPAN SISTEM PENGENDALIAN INTERN PERSEDIAAN BARANG DAGANGAN PADA TOKO MAHKOTA DIESEL MANADO

2017 ◽  
Vol 12 (01) ◽  
Author(s):  
Juwita Natalia Samuna ◽  
Harijanto Sabijono ◽  
Stanley Kho Walandouw
Keyword(s):  
Control System ◽  
Qualitative Analysis ◽  
Internal Control ◽  
Spare Parts ◽  
Accounting System ◽  
Control Environment ◽  
Analysis Method ◽  
Serial Number ◽  
Internal Control System ◽  
Control Procedures

Internal control system is a way or system that can prevent the occurrence of irregularities in the company. Internal control system of the inventory aims to protect the company's assets from theft. The research object is taken at the Manado Diesel Crown Store is one of the stores in Manado that runs the business by selling machines and spare parts. This study aims to evaluate the effectiveness of the application of internal control system merchandise inventory at Diesel Manado.The method of analysis used in this research is descriptive qualitative analysis method. Based on the results of internal control inventory of merchandise inventory at Manado Diesel Crown Store, then in the control environment that occurs in the company, there is a double position between the sales and the warehouse. In the accounting system, the documents used are not serial number printed. In control procedures, authorization system is only on certain transactions.Keywords: internal control system, merchandise inventory

scholarly journals PENERAPAN SISTEM PENGENDALIAN INTERN TERHADAP PEMBERIAN KREDIT PADA PT PEGADAIAN (PERSERO) UNIT PELAYANAN CABANG KALIWUNGU

2020 ◽  
Vol 3 (1) ◽  
pp. 39
Author(s):  
Arini Amalia Rahma ◽  
Siti Mutmainah
Keyword(s):  
Risk Assessment ◽  
Control System ◽  
Internal Control ◽  
Qualitative Data ◽  
Secondary Data ◽  
Primary Data ◽  
Control Environment ◽  
Internal Control System ◽  
Information And Communication ◽  
And Control

<em>Internal control is a process carried out by the company to provide adequate guarantees for achieving control objectives. The objective of this Research is to find out the current internal control system that is applied at PT Pegadaian (Persero) Kaliwungu Branch Service in the process of granting credit. The next objective is to identify whether the components of internal control applied are according to COSO. The data used are qualitative data, primary data, and secondary data. The methods of collecting data are interview, observation, and questionnaire. For writing the Research uses descriptive and exposition methods. There are five components of internal control according to the Committee of Sponsoring Organization (COSO), they are Control Environment, Risk Assessment, Control Activities, Information and Communication, and Monitoring. The results of the discussion in the Research shows that the application of the internal control system for granting credit at PT Pegadaian (Persero) Kaliwungu Branch Service is in accordance with COSO internal control component, but the Control Environment and Control Activities has not been fully implemented.</em>

Gender and internal control systems in Spanish local governments

2020 ◽  
Vol 35 (5) ◽  
pp. 463-480
Author(s):  
Ester Gras-Gil ◽  
María del Rocío Moreno-Enguix ◽  
Joaquín Henández-Fernández
Keyword(s):  
Control System ◽  
Public Administration ◽  
Control Systems ◽  
Internal Control ◽  
Local Governments ◽  
Empirical Relation ◽  
Positive Influence ◽  
Economic Management ◽  
Content Type ◽  
Internal Control System

Purpose The presence of women is lower than that of men in positions of responsibility in economic management in public administration, although there has been a more significant increase in local administration. The purpose of this study is to determine whether the application and development of the internal control system in local governments improves through the presence of women in positions of management and responsibility in these institutions. Design/methodology/approach The authors use a multivariate model that allows them to verify the predictive capability of their previously defined explanatory variable gender in 1,527 Spanish local governments. They analyze the empirical relation between the gender and internal control system by multivariate regression models. Findings The authors find that the presence of women in management positions in local governments affects internal control system influences as well as a series of financial and non-financial variables. They conclude that in local governments of more than 50,000 inhabitants, the presence of women in the management has a positive influence on internal control systems and also promotes transparency and a more effective fight against corruption, thus enhancing internal control systems. Research limitations/implications The presence of women in positions of management and responsibility in local government will favor a decrease of corruption in local governments and increase their efficiency and transparency. This study can facilitate women’s access to positions of more economic and financial responsibility in public administration, as well as improve the management and efficiency in these institutions. Originality/value This research is novel in that it determines whether the application and development of the internal control system in local governments improves through the presence of women in the position of management and responsibility in these institutions.

scholarly journals EVALUASI SISTEM PENGENDALIAN INTERN PEMERINTAH ATAS PELAYANAN PERIZINAN PADA DINAS PENANAMAN MODAL DAN PELAYANAN TERPADU SATU PINTU DAERAH PROVINSI SULAWESI UTARA

2020 ◽  
Vol 15 (4) ◽  
pp. 541
Author(s):  
Magfirah Rahman ◽  
Grace B. Nangoi ◽  
Stanley Kho Walandouw
Keyword(s):  
Risk Assessment ◽  
Control System ◽  
Internal Control ◽  
Government Regulation ◽  
Central Government ◽  
Control Environment ◽  
North Sulawesi ◽  
Internal Control System ◽  
Information And Communication ◽  
Monitoring Activities

Government in carry out public services such as licensing service or other services not escape the chances of risks, such as fraud and maladministration, then to minimize this risks, it takes an integral system that can control the implementation of service. Government Internal Control System (GICS) implementation whole in the central government and local government. GICS has an important role in the implementation of services by government agencies. The purpose of research was to evaluate internal control on licensing service in the Investment and One Stop Integrated Service Office of North Sulawesi based of Government Regulation Number 60 of 2008 regarding Government Internal Control System (GICS) consists of five components; control environment, risk assessment, control activities, information and communication and monitoring activities. The type of research used qualitative descriptive method. Data were collected by observation, interviews and documentation. The results showed that component of control activities which is physical asset was not in accordance with Government Regulation Number 60 of 2008, this difference because the security of assets was not running well. For other components, such as control environment, risk assessment, information and communication and monitoring activities, evaluation results indicate it was in accordance with Government Regulation Number 60 of 2008.

scholarly journals Internal audit in the period of economic changes and its role in evaluation of the entity’s internal control. Theoretical characteristics and practical approaches

2021 ◽  
pp. 19-28
Author(s):  
Cristina Vasile Dolghi ◽  
Elena Gheorghe Petreanu
Keyword(s):  
Control System ◽  
Internal Control ◽  
Assessment Tool ◽  
Internal Audit ◽  
Evaluation Process ◽  
Primary Role ◽  
Control Environment ◽  
Internal Control System ◽  
Control Evaluation ◽  
Method Of Evaluation

Internal control delivers guarantee and trust for investors, clients, suppliers, but also for the entity’s employees and other interested parties. As a result, an effective internal control system has a significant impact on the credibility of a modern entity and its activities, which is ensured by the entity’s management, through an appropriate process of evaluating the effectiveness of internal control. On the basis of those exposed, we sustain the opinion shared by many experts in the field, that the primary role in evaluating the internal control system is attributed to internal audit, because in line with current development trends, it supports the entity in maintaining effective controls by evaluating efficiency and effectiveness. As well as by promoting biased business actions. In this connection, the authors approach the study of the basic aspects of the internal control evaluation process in the light of the identification of the method, establishing and interpreting the indicators used in the evaluation, as well as determining the criteria and practical tools for evaluation. As a method of evaluation of internal control the systematic method of authors is proposed, which involves the evaluation of each component of it. This approach permits internal auditors to make an integrated consideration of the effectiveness of internal control in the entity of the internal control system in the good functioning of the entity, which contributes to the fulfillment of its strategic objectives. In addition, the research carried out highlights the performance of the assessment tool – the corresponding questionnaire, which was developed to evaluate the control environment of the entity and applied in the activity of public interest entities in the Republic of Moldova. This study offers the possibility to recognize the deficiencies within the control environment established at the entity and offers the possibility to the management of the entity to improve its functioning mechanism.

scholarly journals The Impact of a Procurement Implementation and Government Internal Control System on Goods/Services Procurement Fraud Prevention by Using Organization Ethical Culture as a Moderating Variable

2019 ◽  
Vol 15 (1) ◽  
pp. 69-81
Author(s):  
Arasy Ghazali Akbar
Keyword(s):  
Regression Analysis ◽  
Control System ◽  
Internal Control ◽  
Ethical Culture ◽  
Fraud Prevention ◽  
Purposive Sampling ◽  
Goods And Services ◽  
Internal Control System ◽  
The Impact ◽  
The Relationship

Abstract                                                                                     This study aims to empirically examine and prove the organization's ethical culture moderating impact on the relationship between e-procurement implementation and the government's internal control system with fraud prevention in procuring goods and services. Based on the purposive sampling method, 55 obtained samples were analyzed by using moderated regression analysis. The results show several findings, first, implementation of e-procurement has a significant effect on fraud prevention. Second, the government's internal control system has a significant effect on fraud prevention. The third and fourth findings indicate that the organization ethical culture is supported as a moderating variable. Keywords: e-procurement, government’s internal control system, organization ethical culture, fraud preventionPengaruh Implementasi E-Procurement dan Sistem Pengendalian Internal Pemerintah terhadap Pencegahan Fraud Pengadaan Barang/Jasa dengan Budaya Etis Organisasi sebagai PemoderasiAbstrakPenelitian ini bertujuan untuk menguji dan membuktikan secara empiris efek moderasi budaya etis organisasi terhadap hubungan implementasi e-procurement dan sistem pengendalian internal pemerintah dengan pencegahan fraud pengadaan barang dan jasa. Berdasarkan metode purposive sampling diperoleh 10 sampel OPD yang dianalisis dengan menggunakan moderated regression analysis. Hasil menunjukkan beberapa temuan, pertama implementasi e-procurement berpengaruh terhadap pencegahan fraud. Kedua, sistem pengendalian internal pemerintah berpengaruh terhadap pencegahan fraud. Temuan ketiga dan keempat menunjukkan bahwa budaya etis organisasi terdukung sebagai variabel moderasi. Kata Kunci: e-procurement, sistem pengendalian internal pemerintah, budaya etis organisasi, pencegahan fraud.

Sign in / Sign up

Export Citation Format

Share Document