CONTROLS AND SARBANES-OXLEY

CONTROLS AND SARBANES-OXLEY

Cached

Download Links

[www.xactlycorp.com]

by Raymond R. Panko

Citations:

1 - 0 self

BibTeX

@MISC{Panko_controlsand,
    author = {Raymond R. Panko},
    title = {CONTROLS AND SARBANES-OXLEY},
    year = {}
}

Bookmark

OpenURL

Abstract

The Sarbanes–Oxley Act of 2002 (SOX) has forced corporations to examine their spreadsheet use in financial reporting. Corporations do not like what they are seeing. Surveys conducted in response to SOX have shown that spreadsheets are used widely in corporate financial reporting. Spreadsheet error research, in turn, has shown that nearly all large spreadsheets have multiple errors and that errors of material size are very common. The first round of Sarbanes-Oxley assessments confirmed concerns about spreadsheet accuracy. Another concern is spreadsheet fraud, which also exists in practice and is easy to perpetrate. Unfortunately, few organizations have effective controls to deal with either errors or fraud. This paper examines spreadsheet risks for Sarbanes-Oxley (and other regulations) and discusses how general and IT-specific control frameworks can be used to address the control risks created by spreadsheets.

Citations

382	Human Error - Reason - 1999
162	A small matter of programming: perspectives on end user computing - Nardi - 1993
81	Programming productivity - Jones - 1986
70	Estimating software costs - Jones - 1998
67	Design and Code Inspections to Reduce Errors - Fagan - 1990
61	An experimental study of people creating spreadsheets - Brown, Gould - 1987
58	Surpassing Ourselves: An Inquiry into the Nature and Implications of Expertise - Bereiter, Scardamalia - 1993
56	Experience with inspection in ultralarge-scale developments - Russell - 1991
49	A Controlled Experiment in Program Testing and Code Walkthroughs/Inspections - Myers - 1978
46	Lessons from Three Years of Inspection Data - Weller - 1993
39	Measures for Excellence - Putman, Myers - 1992
33	Software process improvement at Raytheon - HALEY - 1996
30	Successfully applying software metrics - Grady - 1994
28	Creating, comprehending, and explaining spreadsheets: A cognitive interpretation of what discretionary users think of the spreadsheet model - HENDRY, GREEN - 1994
25	Managing code inspection information - Barnard, Price - 1994
24	Applying Code Inspection to Spreadsheet Testing . Working Paper - Panko - 1997
22	Software Testing Techniques (2nd ed - Beizer - 1990
22	Spreadsheet modelling abuse: An opportunity for OR - Cragg, King - 1993
11	ªAn Empirical Study of Spreadsheet Error-Finding - Galletta, Abraham, et al. - 1993
11	Spreadsheet presentation and error detection: an experimental study - Galletta, Hartzel, et al. - 1996
11	Exploring the effectiveness of formal technical review factors with CSRS, a collaborative software review system - Tjahjono - 1996
10	Using Formal Methods to Develop an ATC - Hall - 1996
9	Auditing Spreadsheets,” Australian Accountant - Davies, Ikin - 1987
8	A Spreadsheet Auditing Tool Evaluated in an Industrial Context - Clermont, Hanin, et al.
7	Error Detection - Allwood - 1984
7	Mental procedures in real-life tasks: A case study of electronic trouble shooting - Rasmussen, Jensen - 1974
6	Managing spreadsheet model development - Floyd, Walls, et al. - 1995
6	A Model of End-User Computing Policy - Galletta, Hufnagel - 1992
6	Twinkling Lights and Nested Loops - Nardi, Miller - 1991
6	Two Corpuses of Spreadsheet Errors - Panko - 2000
6	Are Two Heads Better than One? (At Reducing Errors in Spreadsheet Modeling). Office Systems Research Journal - Panko, Halverson - 1997
6	Company Accounting Oversight Board, 2007 Annual Report, available at http://www. pcaobus.org/About_the_PCAOB/Annual_Reports/2007.pdf (providing an annual review of the PCAOB - Public
6	Visual information chunking in spreadsheet calculation - Saariluoma - 1989
6	The relationship of application risks to application controls: A study of microcomputer-based spreadsheet applications - Schultheis, Sumner - 1994
6	Evaluating Design Metrics on Large-Scale Software - Zage, Zage - 1993
5	Factors influencing risks and outcomes in end-user development - Janvrin, Morrison - 1996
5	Testing hypotheses about other people: The role of the hypothesis - Snyder, Campbell - 1980
4	Four Applications of a Software Data Collection and Analysis Methodology - Basili, Selby - 1986
4	The Dynamics of Composing: Making Plans and Juggling - Flower, Hayes - 1980
4	Identifying the Organization of Writing - Hayes, Flower - 1980
4	2005) “Sarbanes–Oxley: What About All the Spreadsheets? Controlling for Errors and Fraud - Panko, Ordway
3	Computerized Financial Planning: Discovering Cognitive Difficulties - Lerch - 1988
3	Human Error Website - Panko - 2006
3	Quantitative and Qualitative Errors - Teo, Tan - 1997
2	An analysis of errors and their causes in systems programs - Endress - 1975
2	The Relationship Between Objective - Howarth - 1988
2	Microsoft’s Pilot of TSP Yields Dramatic Results.” news@sei - Kimberland - 2004
2	26-27). “Financial Modelling of Project Financing Transactions.” Institute of Actuaries of Australia Financial Services Forum - Lawrence, Lee - 2004
2	End User Computing - Panko - 1988
2	15). “The New Guidelines for Writing Spreadsheets.” http://www.mang.canterbury.ac.nz/people/jfraffen/spreadsheets/index.html - Raffensperger - 2000