Assessing Internal Audit with Text Mining

Recently internal controls, corporate governance and risk management have received a great deal of attention. Regarding internal control, several research studies address the issue of internal audit quality. Noteworthy, according to Sarbanes–Oxley (SOX) the internal controls over financial reporting are assessed by the auditors and the management. In the present study, we assess internal controls over financial reporting by employing Text Mining techniques. We analyse the annual reports of 133 publicly traded Greek Companies. The textual parts of the annual reports that refer to internal audit mechanism are extracted. We adopt a Vector Space model and the term-document matrix records the occurrence frequencies of the terms. By applying feature selection, a set of significant keywords, which are used as predictors, is extracted. The Linear Regression model developed explains the variance of the data and highlights significant predictors. The model manages to successfully assess the internal audit function. By performing PCA, major underlying procedures and concepts related to internal audit quality are revealed. Inspite of the undoubted importance of the assessment of internal audit, no previous attempt has been made to assess internal audit and to extract internal audit information from corporate disclosures by using Text Mining techniques. Our results can be useful to internal and external auditors, managers, company decision-makers, regulators and researchers.

Download Full-text

Model Pengendalian Internal Berbasis Sarbanes-Oxley Act dan Keandalan Pelaporan Keuangan (Studi Internal Audit Pada Perusahaan Publik di Indonesia)

Jurnal Ekonomi dan Bisnis ◽

10.24914/jeb.v18i2.264 ◽

2016 ◽

Vol 18 (2) ◽

pp. 81

Author(s):

Syahril Djaddang ◽

Shanti Lysandra

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Audit Quality ◽

Internal Audit ◽

Public Companies ◽

Audit Opinion ◽

Moderating Variables ◽

Sarbanes Oxley ◽

Control Application ◽

The Impact

<em>This study focus on internal control application based on the Sarbanes-Oxley Act. The research objective is to examine the impact of Sarbanes-Oxley Act implementation and the financial reporting reliability toward audit quality and audit opinion. The research is conducted on public companies implementing Sarbanes- Oxley Act in Indonesia. The internal audit section in the companies are used as respondents. Based on questionnaires distributed, there were 35 samples of public companies used in this research. This study employs WarpPLS to handle the SEM model in testing the hypotheses and multigroup analysis to conduct the sensitivity analysis. The research’s results showed that application of Sarbanes-Oxley Act based internal control and financial reporting reliability are positively affect the audit opinions and directly influence the audit quality. However, the independent auditor's opinion is not a moderating variables between other variables. The research results are expected to be used as considerations by the companies in implementation of Sarbanes-Oxley Act based internal control.</em>

Download Full-text

Integration of Internal Control and Financial Statement Audits: Are Two Audits Better than One?

The Accounting Review ◽

10.2308/accr-52197 ◽

2018 ◽

Vol 94 (2) ◽

pp. 53-81 ◽

Cited By ~ 10

Author(s):

Lori Shefchik Bhaskar ◽

Joseph H. Schroeder ◽

Marcy L. Shepardson

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Audit Quality ◽

Internal Controls ◽

Data Availability ◽

Financial Statement ◽

Auditor Judgment ◽

Public Company ◽

Better Than

ABSTRACT The quality of financial statement (FS) audits integrated with audits of internal controls over financial reporting (ICFR) depends upon the quality of ICFR information used in, and its integration into, FS audits. Recent research and PCAOB inspections find auditors underreport existing ICFR weaknesses and perform insufficient testing to address identified risks, suggesting integrated audits—in which substantial ICFR testing is required—may result in lower FS audit quality than FS-only audits. We compare a 2007–2013 sample of small U.S. public company firm-years receiving integrated audits (accelerated filers) to firm-years receiving FS-only audits (non-accelerated filers) and find integrated audits are associated with higher likelihood of material misstatements and discretionary accruals, consistent with lower FS audit quality. We also find evidence of (1) auditor judgment-based integration issues, and (2) low-quality ICFR audits harming FS audit quality. Overall, results suggest an important potential consequence of integrated audits is lower FS audit quality. Data Availability: Data are publicly available from the sources identified in the text.

Download Full-text

Classifying internal audit quality using textual analysis: the case of auditor selection

Managerial Auditing Journal ◽

10.1108/maj-01-2018-1785 ◽

2019 ◽

Vol 34 (8) ◽

pp. 924-950 ◽

Cited By ~ 1

Author(s):

Georgia Boskou ◽

Efstathios Kirkos ◽

Charalambos Spathis

Keyword(s):

Text Mining ◽

Textual Analysis ◽

Audit Quality ◽

Internal Audit ◽

Annual Reports ◽

Financial Indicators ◽

Classification Models ◽

Promising Alternative ◽

Content Type ◽

Auditor Selection

Purpose This paper aims to assess internal audit quality (IAQ) by using automated textual analysis of disclosures of internal audit mechanisms in annual reports. Design/methodology/approach This paper uses seven text mining techniques to construct classification models that predict whether companies listed on the Athens Stock Exchange are audited by a Big 4 firm, an auditor selection that prior research finds is associated with higher IAQ. The classification accuracy of the models is compared to predictions based on financial indicators. Findings The results show that classification models developed using text analysis can be a promising alternative proxy in assessing IAQ. Terms, N-Grams and financial indicators of a company, as they are presented in the annual reports, can provide information on the IAQ. Practical implications This study offers a novel approach to assessing the IAQ by applying textual analysis techniques. These findings are important for those who oversee internal audit activities, assess internal audit performance or want to improve or evaluate internal audit systems, such as managers or audit committees. Practitioners, regulators and investors may also extract useful information on internal audit and internal auditors by using textual analysis. The insights are also relevant for external auditors who are required to consider various aspects of corporate governance, including IAQ. Originality/value IAQ has been the subject of thorough examination. However, this study is the first attempt, to the authors’ knowledge, to introduce an innovative text mining approach utilizing unstructured textual disclosure from annual reports to develop a proxy for IAQ. It contributes to the internal audit field literature by further exploring concerns relevant to IAQ.

Download Full-text

Audit Partner Tenure and Audit Planning and Pricing

Auditing A Journal of Practice & Theory ◽

10.2308/aud.2010.29.2.45 ◽

2010 ◽

Vol 29 (2) ◽

pp. 45-70 ◽

Cited By ~ 54

Author(s):

Jean C. Bedard ◽

Karla M. Johnstone

Keyword(s):

Financial Reporting ◽

Audit Quality ◽

Internal Controls ◽

First Year ◽

Public Companies ◽

Audit Opinion ◽

Audit Firm ◽

Audit Planning ◽

Sarbanes Oxley ◽

Client Knowledge

SUMMARY: This paper investigates the association between audit engagement partner tenure and audit planning and pricing. Prior archival research from countries requiring partner signature on the audit opinion provides mixed results on the implications of partner tenure for audit quality. While variation in audit quality based on partner tenure implies some difference in the conduct of the engagement, prior research has not yet addressed whether engagement processes differ based on partner tenure. Using proprietary data from a large audit firm, we find that planned engagement effort increases following partner rotation, suggesting that new partners invest effort to gain client knowledge in the first year on the engagement. We also examine planned realization rates, finding them to be lower following partner rotation. This implies that new partners’ investments in client knowledge are not compensated by clients. We also find higher planned realization rates on audits having the same engagement partner for more than five years, a longer tenure than is now allowed for public companies following the Sarbanes-Oxley Act. We obtain these results while controlling for client risks that affect audit planning and pricing, including those related to financial reporting, management integrity, and internal controls.

Download Full-text

How Effective are Organizations' Internal Controls? Insights into Specific Internal Control Elements

Current Issues in Auditing ◽

10.2308/ciia-50146 ◽

2012 ◽

Vol 6 (1) ◽

pp. A31-A50 ◽

Cited By ~ 22

Author(s):

Dana R. Hermanson ◽

Jason L. Smith ◽

Nathaniel M. Stephens

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Financial Services ◽

Audit Committee ◽

Internal Audit ◽

Internal Controls ◽

Component Level ◽

Public Companies ◽

Tone At The Top ◽

Survey Responses

SUMMARY Based on survey responses from approximately 500 Chief Audit Executives (CAEs) and other internal auditors, this article provides an insider's view of the perceived strength of organizations' internal controls (i.e., internal control over financial reporting) in the Control Environment, Risk Assessment, and Monitoring components of the Committee of Sponsoring Organizations' (COSO 1992a) Internal Control—Integrated Framework. Although the respondents largely rate control strength as relatively high, we identify several areas for potential improvement of internal controls, especially related to assessing the “tone at the top,” as well as following up on deviations from policy and management override of controls. In analyzing individual control elements, we find that public companies' controls are consistently rated as more effective than those of other organizations. We also find a number of interesting differences across key industries, especially in the Monitoring component, where banks and other financial services firms appear to have more robust Monitoring controls than do healthcare and other services firms. The component-level analysis reveals that internal control component strength is positively related to the CAE reporting primarily to the audit committee, public company status, and the average tenure of the internal audit function staff, among other findings. Based on the survey findings, we describe key implications relevant to internal and external auditors, accounting researchers and educators, and management.

Download Full-text

SOX Section 404 Material Weakness Disclosures and Audit Fees

Auditing A Journal of Practice & Theory ◽

10.2308/aud.2006.25.1.99 ◽

2006 ◽

Vol 25 (1) ◽

pp. 99-114 ◽

Cited By ~ 258

Author(s):

K. Raghunandan ◽

Dasaratha V. Rama

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Audit Fees ◽

Internal Controls ◽

Fiscal Year ◽

Section 404 ◽

Control Material ◽

Material Weakness ◽

Sarbanes Oxley ◽

The Mean

Section 404 of the Sarbanes-Oxley Act and Auditing Standard No. 2 (PCAOB 2004) require management and the auditor to report on internal controls over financial reporting. Section 404 is arguably the most controversial element of SOX, and much of the debate around the costs of implementing section 404 has focused on auditors' fees (Ernst & Young 2005). In this paper, we examine the association between audit fees and internal control disclosures made pursuant to section 404. Our sample includes 660 manufacturing firms that have a December 31, 2004 fiscal year-end and filed the section 404 report by May 15, 2005. We find that the mean (median) audit fees for the firms in our sample for fiscal 2004 is 86 (128) percent higher than the corresponding fees for fiscal 2003. Audit fees for fiscal 2004 are 43 percent higher for clients with a material weakness disclosure compared to clients without such disclosure; however, audit fees for fiscal 2003 are not associated with an internal control material weakness disclosure (in the 10-K filed following fiscal 2004). We also find that the association between audit fees and the presence of a material weakness disclosure does not vary depending on the type of material weakness (systemic or non-systemic).

Download Full-text

The Impact of Enterprise Resource Planning (ERP) Systems on the Effectiveness of Internal Controls over Financial Reporting

Journal of Information Systems ◽

10.2308/jis.2011.25.1.129 ◽

2011 ◽

Vol 25 (1) ◽

pp. 129-157 ◽

Cited By ~ 38

Author(s):

John J. Morris

Keyword(s):

Financial Reporting ◽

Enterprise Resource Planning ◽

Internal Control ◽

Control Sample ◽

Resource Planning ◽

Internal Controls ◽

Erp Systems ◽

Individual Account ◽

Sarbanes Oxley ◽

The Impact

ABSTRACT: Software vendors that market enterprise resource planning (ERP) systems have taken advantage of the increased focus on internal controls that grew out of the Sarbanes-Oxley (SOX) legislation by emphasizing that a key feature of ERP systems is the use of “built-in” controls that mirror a firm’s infrastructure. They argue that these built-in controls and other features will help firms improve their internal control over financial reporting as required by SOX. This study tests that assertion by examining SOX Section 404 compliance data for a sample of firms that implemented ERP systems between 1994 and 2003. The results suggest that ERP-implementing firms are less likely to report internal control weaknesses (ICW) than a matched control sample of non-ERP-implementing firms. It also finds that this difference exists for both general (entity-wide), and individual (account-level) controls.

Download Full-text

Controls, Security, and Audit in Online Digital Accounting

Digital Accounting ◽

10.4018/978-1-59140-738-6.ch010 ◽

2011 ◽

pp. 318-383

Author(s):

Ashutosh Deshmukh

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Annual Report ◽

Control Structure ◽

Internal Controls ◽

Section 404 ◽

Checks And Balances ◽

The Public ◽

Sarbanes Oxley ◽

Public Company

Internal controls have existed since the dawn of business activities. Internal controls are basically systems of checks and balances. The purpose is to keep the organization moving along desired lines as per the wishes of the owners and to protect assets of the business. Internal controls have received attention from auditors, managers, accountants, fraud examiners and legislatures. Sarbanes Oxley Act 2002 now requires the annual report of a public company to contain a statement of management’s responsibility for establishing and maintaining an adequate internal control structure and procedures for financial reporting; and management’s assessment of the effectiveness of the company’s internal control structure and procedures for financial reporting. Section 404 of the Act also requires the auditor to attest to and report on management’s assessment of effectiveness of the internal controls in accordance with standards established by the Public Company Accounting Oversight Board (PCAOB).

Download Full-text

Determinants of the Persistence of Internal Control Weaknesses

Accounting Horizons ◽

10.2308/acch-10266 ◽

2012 ◽

Vol 26 (2) ◽

pp. 307-333 ◽

Cited By ~ 38

Author(s):

Bonnie K. Klamm ◽

Kevin W. Kobelsky ◽

Marcia Weidenmier Watson

Keyword(s):

Financial Reporting ◽

Internal Control ◽

Management Training ◽

Internal Controls ◽

Senior Management ◽

Data Availability ◽

The Public ◽

Sarbanes Oxley ◽

Material Weaknesses ◽

Specific Control

SYNOPSIS This paper analyzes the degree to which material weaknesses (MWs) in internal control reported under the Sarbanes-Oxley Act of 2002 (SOX) affect the future reporting of MWs. Particularly, we examine information technology (IT) and non-IT MWs and their breakdown into specific IT-related entity-level, non-IT-related entity-level, and account-level deficiencies. Analysis reveals that most account-level and entity-level deficiencies occur at a significantly higher rate in SOX 404 reports with at least one IT MW than in MW reports with only non-IT MWs. Further, the presence and count of both types of MWs and all three types of deficiencies are associated with increased future MWs, as are lower profitability, non-Big 6 auditor, and firm complexity. Specific control deficiencies related to senior management, training, and IT control environment have the strongest impact on future MWs. These results indicate that effective corporate governance of both the IT and non-IT domains is pivotal in establishing and maintaining strong internal controls over financial reporting. Data Availability: Data are available from the public sources identified in the paper.

Download Full-text

Former Audit Partners on the Audit Committee and Internal Control Deficiencies

The Accounting Review ◽

10.2308/accr.2009.84.2.559 ◽

2009 ◽

Vol 84 (2) ◽

pp. 559-587 ◽

Cited By ~ 117

Author(s):

Vic Naiker ◽

Divesh S. Sharma

Keyword(s):

Financial Reporting ◽

Internal Control ◽

House Of Representatives ◽

Audit Committee ◽

Discretionary Accruals ◽

Negative Association ◽

Internal Controls ◽

Sarbanes Oxley ◽

External Auditor ◽

Internal Control Deficiencies

ABSTRACT: This study examines the association between internal control deficiencies (ICDs) reported under Section 404 of the Sarbanes-Oxley Act (SOX, U.S. House of Representatives 2002) and the presence of former audit partners on the audit committee who are affiliated (AFAPs) and unaffiliated (UFAPs) with the firm's external auditor. We find a negative association between AFAPs and UFAPs on the audit committee and ICDs. We also find results that suggest the NYSE and NASDAQ three-year “cooling-off” rule applying to AFAPs may be unwarranted and deserves further empirical and regulatory attention. Further tests suggest AFAPs do not allow management to circumvent the disclosure of ICDs when conditions appear to suggest this may be so, and that AFAPs are negatively related to performance-adjusted discretionary accruals. Collectively, we interpret these findings to suggest that AFAPs and UFAPs on the audit committee are associated with more effective monitoring of internal controls and financial reporting.

Download Full-text