PDF iconDownload This Paper
Open PDF in Browser
Add Paper to My Library
Permalink
Using these links will ensure access to this page indefinitely
Copy URL
Copy DOI

Some Observations about SOX 404(b) Control Process Audits

26 Pages Posted: 2 Oct 2012

See all articles by William R. Kinney, Jr.

William R. Kinney, Jr.

University of Texas at Austin - Department of Accounting

Roger D. Martin

University of Virginia - McIntire School of Commerce

Marcy L. Shepardson

Indiana University - Kelley School of Business - Department of Accounting

Date Written: September 24, 2012

Abstract

In the decade since the July, 2002 passage of the quickly-legislated Sarbanes-Oxley Act, audit production in the U.S. has been substantially augmented by implementation of mandated internal control process audits. Audit production changes are important as the control audit mandate is unique and imposes substantial costs on U.S.-traded firms, yet little is known about the conduct of control process audits or the efficacy of substantially lower cost alternative mechanisms to provide auditor scrutiny and reporting on internal control quality. This paper reflects our collective experiences and observation of a consistent message across the decade from analyses of extensive public and limited non-public archival data, analytical studies, and numerous personal experiences of audit practitioners. Our primary observation is that, absent knowledge of any financial misstatements, auditors find it difficult to identify material weaknesses in internal control over financial reporting. Conversely, with knowledge of misstatements, auditors can and do identify, at low incremental cost, most entities that have ineffective internal controls as identified by control audits. Financial misstatement detection is, of course, the primary tangible output of a financial statement audit. Thus, it appears possible to exploit this observation to obtain for investors information about companies with weak controls without incurring the cost of a full internal control process audit. We believe that U.S. markets could benefit from more transparency about the current U.S. audit production process and from informed debate about the best mechanism design for balancing the needs of all parties interested in internal control quality disclosure.

Keywords: internal control audits, integrated audits, audit risk model, SOX 404

Suggested Citation

Kinney, William and Martin, Roger Dean and Shepardson, Marcy L., Some Observations about SOX 404(b) Control Process Audits (September 24, 2012). Available at SSRN: https://ssrn.com/abstract=2155144 or http://dx.doi.org/10.2139/ssrn.2155144

William Kinney

University of Texas at Austin - Department of Accounting ( email )

Austin, TX 78712
United States
512-471-3632 (Phone)
512-471-3904 (Fax)

Roger Dean Martin

University of Virginia - McIntire School of Commerce ( email )

P.O. Box 400173
Charlottesville, VA 22904-4173
United States

Marcy L. Shepardson (Contact Author)

Indiana University - Kelley School of Business - Department of Accounting ( email )

1309 E. 10th Street
Bloomington, IN 47405
United States

PDF iconDownload This Paper
Open PDF in Browser

Do you have negative results from your research you’d like to share?

Submit Negative Results

Paper statistics

Downloads
252
Abstract Views
2,588
Rank
222,599
22 References
PlumX Metrics

Related eJournals