Internal control audits: Judges' perceptions of the credibility of the financial reporting process and likely auditor liability

This paper reports the results of a study in which fifty-seven sitting United States judges participated in a behavioral experiment to assess the perceived credibility of the financial reporting process and the legal risk auditors bear under conditions where they provide an internal control audit report (vs. no report) under two corporate governance environments. We find that participating judges believe internal control audits provide enhanced assurance that intentional misstatements do not exist and also serve to provide elevated protection to the public, but only under conditions of a strong corporate governance environment beyond current regulatory requirements. We also find that, after being informed of an undetected material fraud, judges who currently have high expectations of the auditing profession find auditors more liable when an internal control audit report has been issued (as compared to when no such report has been issued).     

Internal audit reporting lines,fraud risk decomposition,and assessments of fraud risk

The main purpose of this research is to examine the effects of internal audit reporting lines on fraud risk assessments made by internal auditors when the level of fraud risk varies. Significant emphasis has been placed on the importance of reporting lines in maintaining the autonomy of internal auditors, but the perceived benefits of requiring internal audit to report directly to the audit committee have not been validated or systematically investigated. Results of an experiment involving 172 experienced internal auditors and additional survey findings indicate that internal auditors perceive more personal threats when they report high levels of risk directly to the audit committee, relative to management. Perceived threats lead internal auditors to reduce assessed levels of fraud risk when reporting to the audit committee relative to when reporting to management. This finding runs counter to the anticipated benefits of requirements that the internal audit function report directly to the audit committee, and it reveals potential conflicts of interest and independence threats created by the audit committee itself. We also investigate the effects of fraud risk decomposition on risk assessments made by internal auditors. We find that fraud risk assessment decomposition does not have the same effects on internal auditors as it has on external auditors, and the effects of decomposition do not align with the expected benefits of decomposition.     

The effects of disclosure type and audit committee expertise on Chief Audit Executives’ tolerance for financial misstatements

This study involves an experiment where 73 Chief Audit Executives and deputy Chief Audit Executives determine the amount of adjustment required to correct a misstatement. We manipulate the financial reporting location of the misstatement (recognized vs. disclosed) and the level of audit committee expertise (high vs. low). The results indicate that financial reporting location has significant effects on internal auditors’ decisions to correct misstatements. Specifically, internal auditors are more willing to waive disclosed misstatements relative to recognized misstatements. Contrary to expectations, the results do not indicate that increased audit committee expertise and associated increases in audit committee members’ perceived powers cause internal auditors to be less willing to waive misstatements.     

What Drives the Consequences of Intentional Misstatements? Evidence from Rating Analysts’ Reactions

This paper aims to identify the mechanisms through which intentional misstatements adversely affect firms by analyzing rating analysts’ reaction to misstatements. In order to identify the mechanisms through which the misstatement affects firms’ credit ratings, we analyze the content of rating reports. Rating analysts are concerned about seven different mechanisms. They are most concerned about misstatement‐related violations of debt covenants that increase a firm's liquidity risk. We find that, subsequent to an intentional misstatement becoming publicly known, credit ratings of misreporting firms are adversely affected for up to seven years. The adverse impact of an intentional misstatement on a firm's credit rating is most pronounced in cases in which rating analysts mention concerns about misstatement‐related violations of covenants. Our results suggest that these covenant violations are the most severe mechanism through which misstatements adversely affect firms’ creditworthiness.     

The effect of general counsel prominence on the pricing of audit services

We investigate the effect of corporate general counsel (GC) ascension to the senior management team on the pricing of audit services. Prior research suggests that the GC position may have a significant influence in setting the tone at the top by promoting corporate integrity, ethics, and serving as a governance and monitoring mechanism, but also recognizes that prominent GCs may face ethical dilemmas, causing them to disregard professional responsibilities to curry the favor of the CEO and other executives. Using audit fees to proxy for audit engagement risk, we find a negative association between GC ascension to top management and audit fees. We investigate the mechanisms behind this relation and find GC ascension is associated with a reduction in both default risk and financial misstatement risk, which supports auditors’ perceived reduction in client business risk and audit risk, respectively.     

Does the severity of a client’s negative environmental,social and governance reputation affect audit effort and audit quality?

In recent years, investors have begun to value companies’ reputations through their environmental, social, and governance (ESG) practices. ESG risk can affect business processes and controls and can heighten financial risk and threaten a firm’s survival. This study examines whether and how the severity of media coverage of a firm’s negative ESG issues (tainted ESG reputation) is associated with audit effort and audit quality. I find that auditors manage the higher expected engagement risk conveyed by tainted ESG reputation by applying higher audit effort. Next, I observe that the increased effort is associated with auditors likely detecting and requiring adjustments for material misstatements and that tainted ESG reputation is associated with fewer misstatements (i.e., reduces poor audit quality). The association between tainted ESG reputation and audit quality is driven primarily by increased audit report lag, not by increased audit fees. Further, I find that tainted ESG reputation is positively associated with audit effort and reduces poor audit quality for up to three years. The results also show that the audit effort and audit quality effect vary across the three components of ESG.     

A Framework for Identifying (and Avoiding) Fraudulent Financial Reporting*

This commentary analyzes the relationship of fraud risk assessments to other risk assessments by auditors. The Public Company Accounting Oversight Board notes that this is a problem area of current practice. Effective detection of fraudulent financial reporting requires an integrative accounting/auditing conceptual framework. As a result, this paper is as much about accounting theory as it is about auditing. To simplify the development of such an integrated framework, this paper uses an expanded risk model. This effectively results in a risk perspective on fraudulent financial reporting. There are many potential implications but the major findings are as follows. First, the study identifies the crucial role of benchmarks based on acceptable levels of risk to help differentiate between intentional and unintentional misstatements. Such differentiation is critical to successfully implementing the American Institute of Certified Public Accountants' Statement on Auditing Standards (SAS) No. 99 and international standards ISA Nos. 240, 540, and 700. Second, the paper shows the importance of not allowing the major categories of risks identified here from getting too high. This paper explains the need to set acceptable levels of these risks, either by standard‐setters as a matter of broad policy, or by individual practitioners as part of the terms of specific engagements. I propose that a major factor in the concept of “present fairly” be the acceptable levels of accounting risks that are defined here, especially the risks due to intentional forecast errors. Third, this paper clarifies how the fraud risk of SAS No. 99, and similar international standards, relates to the current audit risk model framework.     

Analysts' Cash Flow Forecasts,Audit Effort,and Audit Opinions on Internal Control

We examine the economic impact of analysts’ cash flow forecasts by looking at how external auditors respond to financial analysts’ issuance of cash flow forecasts. Using a differences‐in‐differences approach, we find that financial analysts’ initiation of cash flow forecasts leads to reduced auditor fees and audit report lags. Moreover, after cash flow forecast initiation, firms report fewer Section 404(b) internal control weakness disclosures. These findings suggest that cash flow forecasts constrain earnings manipulation and improve management accounting behavior, thereby reducing inherent and control risk and strengthening firms’ internal control over financial reporting.     

The Contribution of Internal Audit as a Determinant of External Audit Fees and Factors Influencing This Contribution

Despite extensive research on the determinants of external audit fees, there is little empirical evidence on the effect of internal audit contribution on the external audit fee. Using a cross-sectional regression model based on prior audit fee research, this study provides evidence that internal audit contribution is a significant determinant of the external audit fee. Further, a second model that provides evidence on the determinants of internal audit contribution is developed and tested. This second model indicates that internal audit contribution is influenced by internal audit quality and, conditional on the level of inherent risk, the availability of internal audit and the extent of coordination between internal and external auditors. These results are based on a unique data-set comprised of publicly available data matched with survey responses from internal and external auditors affiliated with 70 non-financial services Fortune 1000 firms. The sample includes all of the former "Big 6" international accounting firms and clients from twenty-nine different industries.     

Internal auditors’ roles: From watchdogs to helpers and protectors of the top manager

The purpose of this paper is to understand the governance roles of internal auditors in public sector organizations. An analysis of 42 in-depth semi-structured interviews conducted with experienced internal auditors working in public administration in Quebec indicates that internal auditors perform two key roles: a protector role, further subdivided into two roles, protective shield and keeper of secrets, and a helper role, also subdivided into two roles, support of organizational performance and guide. The analysis also shows that internal auditors have developed a nuanced conception of independence defined as ‘grey independence’ in order to perform their roles. Internal auditors consider that their primary role is to serve the top manager and the organization and that they must prioritize the top manager at the expense of audit committee members. Therefore, this paper contributes to the literature on internal auditor independence. Overall, the findings suggest that internal auditing is not the governance watchdog expected by the regulatory bodies since this is not the role performed by internal auditors.