Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 An Evidential Reasoning Approach to Sarbanes-Oxley Mandated Internal Control Assessment Lili Sun, Rutgers University Rajendra Srivastava, The University.

Published byMarjory Payne Modified over 9 years ago

Similar presentations

Presentation on theme: "1 An Evidential Reasoning Approach to Sarbanes-Oxley Mandated Internal Control Assessment Lili Sun, Rutgers University Rajendra Srivastava, The University."— Presentation transcript:

1 1 An Evidential Reasoning Approach to Sarbanes-Oxley Mandated Internal Control Assessment Lili Sun, Rutgers University Rajendra Srivastava, The University of Kansas David Vun Kannon Theodore Mock, The University of Southern California Miklos Vasarhelyi, Rutgers University

2 2 Developing The Next Generation Of Internal Control Tools Using CA First generation of 404 implementation: –Focus on documentation of controls –Filling gaps in COSO framework –Highly labor intensive Second generation of 404 implementation: –More cost efficient and effective –More systematic assessment of controls –Focus on identifying material control weaknesses and audit automatically rather than manually

3 3 Evidential Reasoning: Systematic, Higher Value IC Assessment Tool Evidential reasoning: a process of risk assessment where several assertions when combined together inform about the effectiveness of an internal control procedure and the overall internal control system. Decompose risk assessment into individual evidence level. Provide a rigorous algorithm to aggregate human beliefs. Provides systematic way to represent the interrelationships among multiple key components for the evaluation of IC. Help discipline Auditors’ thought process in estimating risk Serve as a decision aid for auditors.

4 4 Create A Systematic Representation Of KPMG Model Of Risk Assessment Financial reporting model –Parent company –Subsidiary –Financial statement –Significant accounts Business process model –Business process –Objective –Risk –Control –Evaluation procedures

5 5 Generic Evidential Reasoning Model Of Internal Control Assurance A1: IC/FR for the consolidated entity is effective OR && & & IC/FR for subsidiary i is effective The system of IC/FR for Account j on BS is effective IC/FR for Account i on BS is effective IC for Process j is effective The system of IC for Process i is effective. Process j is protected from IC risk j. Process j is protected from IC risk i. Control j Control i Control k Control environment Control m is effective. Control n is effective. Financial reporting Model Business Process Model

6 6 Application of Evidential Reasoning Approach into A Real Case

7 7 Automate The Aggregation Of Control Evaluations Input: –auditors’ evaluation on the effectiveness of individual control procedure Output: –Quantitative assessment of control effectiveness on multiple layers of the hierarchy: from the individual control level to the overall financial statement level Evidential reasoning a useful decision aid for KPMG auditors because of its: –Clarity –Practicability of use –Completeness –Adaptability

8 8 Continuing Work Validate model against a real audit case Explore issues related to the application of the proposed approach –Refine the quantitative representation of internal control effectiveness. –How to better elicit belief inputs from auditors.

Download ppt "1 An Evidential Reasoning Approach to Sarbanes-Oxley Mandated Internal Control Assessment Lili Sun, Rutgers University Rajendra Srivastava, The University."

Similar presentations

Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
IT Control Objectives for Sarbanes-Oxley Presented by Doug Moore, Jefferson Wells International and Christine Chaney, Continental Airlines.

IT Control Objectives for Sarbanes-Oxley Presented by Doug Moore, Jefferson Wells International and Christine Chaney, Continental Airlines.
Chapter 2 The Software Process

Chapter 2 The Software Process
Learning Objectives LO1 Describe the conceptual audit risk model and its components. LO2 Explain the usefulness and limitations of the audit risk model.

Learning Objectives LO1 Describe the conceptual audit risk model and its components. LO2 Explain the usefulness and limitations of the audit risk model.
Systems Documentation Techniques

Systems Documentation Techniques
Clarified ISAs ISA Groups

Clarified ISAs ISA Groups
Audit Guidance Using the Federal Information System Controls Audit Manual (FISCAM) to Achieve Audit Objectives in Financial and Performance Audits Mickie.

Audit Guidance Using the Federal Information System Controls Audit Manual (FISCAM) to Achieve Audit Objectives in Financial and Performance Audits Mickie.
McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.

McGraw-Hill/Irwin © 2003 The McGraw-Hill Companies, Inc., All Rights Reserved. 7-1 Chapter 7 CHAPTER 7 THE EFFECT OF INFORMATION TECHNOLOGY ON THE AUDIT.
New Audit Risk Standards Are You Ready? John P. Langan, CPA Principal in Charge Public Service Group Metro, DC Office LarsonAllen LLP.

New Audit Risk Standards Are You Ready? John P. Langan, CPA Principal in Charge Public Service Group Metro, DC Office LarsonAllen LLP.
Chapter 10: Auditing the Expenditure Cycle

Chapter 10: Auditing the Expenditure Cycle
ProCognis SOX 404 & COSO Implementation Presentation

ProCognis SOX 404 & COSO Implementation Presentation
Pertemuan 5-6 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.

Pertemuan 5-6 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Data Mining As A Continuous Auditing Tool for “Soft Information”: A Research Question A Research Proposal By J. Donald Warren, Jr. Rutgers University Fifth.

Data Mining As A Continuous Auditing Tool for “Soft Information”: A Research Question A Research Proposal By J. Donald Warren, Jr. Rutgers University Fifth.
Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.

Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.
Internal Control in a Financial Statement Audit

Internal Control in a Financial Statement Audit
Chapter 4 IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESSES.

Chapter 4 IDENTIFYING RISKS AND CONTROLS IN BUSINESS PROCESSES.
Nature of an Integrated Audit

Nature of an Integrated Audit
Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.

Sarbanes-Oxley Project Summary of COSO Framework Presented by Larry Dillehay & Scott Reitan Parkfield Group LLC.
Statement on Auditing Standards (SAS) 112 Communicating Internal Control Related Matters Identified in an Audit.

Statement on Auditing Standards (SAS) 112 Communicating Internal Control Related Matters Identified in an Audit.
AUDIT PROCEDURES. Commonly used Audit Procedures Analytical Procedures Analytical Procedures Basic Audit Approaches - Basic Audit Approaches - System.

AUDIT PROCEDURES. Commonly used Audit Procedures Analytical Procedures Analytical Procedures Basic Audit Approaches - Basic Audit Approaches - System.

Similar presentations

Ads by Google