Abstract
The research aims to measure the Information Technology Controls (ITC) quality and its determinants within the Internal Controls over Financial Reporting. Data are collected from questionnaires and financial reporting of Italian listed companies. The main objective of the research has been investigated using innovative method of evaluation of ITC quality: we used the characteristics of two of the main relevant phases of the audit cycle: ITC scoping and ITC risk assessment. Taking the determinants from previous audit literature and adding the specific variable “Information Technology Auditors”, results show that industry, internationalization and diversification, outsourcing strategy, market capitalization, firm age and corporate governance play a relevant role in determining the efficiency and the efficacy of ITC.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Notes
- 1.
IVASS: National Control Authority for the insurance industry.
References
Ashbaugh-Skaife, H., Collins, D., Kinney, W.: The discovery and reporting of internal control deficiencies prior to SOX-mandated audits. J. Account. Econ. 44(1–2), 166–192 (2007)
Basilo, T.A.: Reducing Sarbanes-Oxley compliance costs. CPA J. 77(1), 6–9 (2007)
Bedard, J.: Archival investigation of audit program planning. Auditing J. Pract. Theor (Fail), 51–57 (1989)
Bedard, J.C., Johnstone, K.M.: Audit partner tenure and audit planning and pricing. Auditing 29(2), 45–70 (2010)
Cannon, D.M., Growe, G.A.: How does Sarbanes-Oxley affect outsourcing? J. Corp. Account Finance 16(3), 13–20 (2005)
Carnaghan, C.: Discussion of IT assurance competencies. Int. J. Account. Inf. Syst. 5(2), 267–273 (2004)
Cohen, J.R., Krishnamoorthy, Ganesh, Wright, A.M.: The impact of roles of the board on auditors’ risk assessments and program planning decisions. Auditing 26(1), 91–112 (2007)
Doyle, J., Ge, W., McVay, S.: Determinants of weaknesses in internal control over financial reporting. J. Account. Econ. 44(1–2), 193–223 (2007)
Fogleman, S.L., Peterson, B.H., Heninger, W.G., Romney, M.B.: Opportunity detected. J. Accountancy 204(6), 62–65 (2007)
Fukukawa, H., Mock, T., Wright, A.: Audit program plans and audit risk: a study of Japanese practice. Int. J. Auditing 10(1), 41–65 (2006)
Ge, W., McVay, S.: The disclosure of material weaknesses in internal control after the Sarbanes-Oxley Act. Account. Horiz. 19(3), 137–158 (2005)
Goh B.W.: Audit Committees, Board of Directors, and Remediation of Material Weaknesses in Internal Control, Contemporary Accounting Research, vol. 26(2), pp. 549–579 (2009)
Greenstein, M., McKee, T.E.: Assurance practitioners’ and educators’ self-perceived IT knowledge level: an empirical assessment. Int. J. Account. Inf. Syst. 5(2), 213–243 (2004). doi:10.1016/j.accinf.2004.04.002
Hackenbrack, K., Knechel, W.R.: Resource allocation decisions in audit engagements’. Contemp. Account. Res. (Fall). 481–99 (1997)
Hermannson, D.R., Hill, M.C., Ivancevich, D.M.: Information technology-related activities of internal auditors. J. Inf. Syst. 14(Supplement), 39–53 (2000)
Hogan, C.E., Wilkins, M.S.: Evidence on the audit risk model: do auditors increase audit fees in the presence of internal control deficiencies? Contemp. Account. Res. 25(1), 219–242 (2008)
Hoitash U., Hoitash R., Bedard J.C.: Corporate governance and internal control over financial reporting: a comparison of regulatory regimes. Account. Rev. 84(3), 839–867 (2009)
Houston, R.W., Peters, M.F., Pratt, J.H.: The audit risk model, business risk and audit-planning decisions. Account. Rev. 74(3), 281–298 (1999)
Krishnan, J.: Audit committee quality and internal control: an empirical analysis. Account. Rev. 80(2), 649–675 (2005)
Krishnan G.V., Visvanathan G.: Reporting internal control deficiencies in the Post-Sarbanes-Oxley Era: the role of auditors and corporate governance. Int. J. Auditing 11, 73–90 (2007)
Laurent, W.: Outsourcing governance. DM Rev. 16(10), 14 (2006)
Leader, B.: Discussion of IT assurance competencies. Int. J. Account. Inf. Syst. 5(2), 275–279 (2004)
Merhout J.W., Havelka D.: Information technology auditing: a value-added IT governance partnership between IT management and audit, communications of the association for information systems CAIS, 23 November, vol. 26, pp. 463–482 (2008)
Mock, T., Wright, A.: An exploratory study of auditor evidential planning. Auditing J. Pract. Theor (Fall), 39–61 (1993)
Mock, T.J., Wright, A.M.: Are audit program plans risk-adjusted? Auditing 18(1), 55–74 (1999)
Naiker V., Sharma D.S.: Former audit partners on the audit committee and internal control deficiencies. Account. Rev. 84(2), 559–587 (2009)
Norman, C.S., Payne, M.D., Vendrzyk, V.P.: Assessing information technology general control risks: an instructional case. Issue Account. Educ. 24(1), 63–76 (2009)
O’Brien, P.: ReducingSOX section 404 compliance costs via a top-down, risk-based approach. CPA J. 76(8), 36–39 (2006)
O’Keefe, T., Simunic, D., Stein, M.: The production of audit services: evidence from a major public accounting firm. J. Account. Res. (Autumn), 241–261 (1994)
Wilson, G.P.: Audit planning-top down or bottom up? Int. J. Gov. Auditing 26(2), 8–9 (1999)
Zhang Y., Zhou J., Zhou N.: Audit committee quality, auditor independence, and internal control weaknesses. J. Account. Publ Policy 26(3), 300–327 (2007)
Acknowledgments
We thank Professor Dr. Henning Zülch for helpful comments and suggestions at the 74th Annual Conference of the German Academic Association for Business Research (VHB) held in Bozen, 2012, May 30–June 2, and the partecipants to the annual meeting of Italian Society of Accounting and Business Administration (SIDREA) in Modena—Italy, 2012, November 27–28. We are grateful to Professors Gerrit Sarens, Giuseppe D’Onza, Marika Arena, Arno Nuijten, Andrew D. Chambers for useful suggestions received at the XIIth Academic Conference on Internal Auditing and Corporate Governance held in Como, 2014, 9–11 April. Finally we thank professors John Hudson and Gareth Myles for helpful comments and suggestions at The International Conference Current Economic Trends in Emerging and Developing Countries, Timisoara (Romania), 2014, 12–14 June.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this paper
Cite this paper
Mazza, T., Azzali, S., Brooks, L. (2016). Determinants of Information Technology Audit Quality. In: Mancini, D., Dameri, R., Bonollo, E. (eds) Strengthening Information and Control Systems. Lecture Notes in Information Systems and Organisation, vol 14. Springer, Cham. https://doi.org/10.1007/978-3-319-26488-2_17
Download citation
DOI: https://doi.org/10.1007/978-3-319-26488-2_17
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-26486-8
Online ISBN: 978-3-319-26488-2
eBook Packages: Business and ManagementBusiness and Management (R0)