Academic literature on the topic 'Sarbanes-Oxley (SOX) Act'

Purpose The purpose of this paper is to analyze and compare the performance of corporate acquisitions between the pre- and post-SOX periods, using both short-term and long-term analyses. Design/methodology/approach The sample includes 9,463 mergers and tender offers undertaken by publicly traded US firms between 1996 and 2009. The authors used the standard event study methodology for short-term performance analysis; Berkovitch and Narayanan (1993) method to identify merger motives; and standard benchmark adjusted return on assets (sales) (Barber and Lyon, 1996) and buy-and-hold abnormal returns (Mitchell and Stafford, 2000) to analyze long-term performance. Findings Compared to the pre-SOX period, US acquirers experience significantly higher announcement returns in the post-SOX period; the results are robust to various controls like bidder, target and deal characteristics, bidder management quality, and product market competition. Similar results (in favor of post-SOX US acquirers) are obtained with long-term post-acquisition operating and stock performance analyses. Research limitations/implications This paper only addressed domestic acquisitions. Originality/value This paper adds to the growing body of research on the impact of SOX on publicly traded US corporations. By examining corporate acquisitions, an important long-term investment decision for a firm, the paper shows that despite the complex nature of SOX, substantial compliance costs and the unintended negative consequence it engendered, the act had a beneficial impact in an important area of corporate finance.

In this study we examine the oversight responsibilities of audit committees in the post Sarbanes‐Oxley Act of 2002 (SOX) era. The results show that audit committee oversight responsibilities assigned and disclosed in proxy statements expanded post‐SOX compared to pre‐SOX. We design a survey instrument to measure the difference between the perceived oversight responsibilities of audit committee members and the oversight responsibilities actually assigned in the proxy. Our results indicate that although audit committees made a substantial commitment to increase their assigned responsibilities over the period of 2001 to 2004, they still need to do more to meet the many additional challenges facing them in a post‐SOX environment. Overall, our results suggest that the intent of SOX‐for audit committees to be more involved and active in the oversight role of an organization‐is becoming institutionalized. These results should be interesting to policy makers, a variety of interest groups, and accounting researchers.

Purpose The purpose of this paper is to examine whether the institutional changes accompanying the passage of the Sarbanes-Oxley Act of 2002 (SOX) have standardized the audit’s role in the overall financial reporting process, thereby reducing the impact of auditor characteristics on financial reporting quality. Design/methodology/approach To test this hypothesis, the association between audit quality characteristics (auditor size and industry expertise) and measures of financial reporting quality (analyst earning forecast dispersion and accuracy) are estimated using regression analysis. Results of this analysis are compared across the pre- and post-SOX periods. Findings The results of the study document a significant relationship between auditor size (Big N vs non-Big N) and financial reporting quality (as proxied by analyst earnings forecast properties) during the pre-SOX period but not in the post-SOX period. Auditor industry expertise is significantly associated with financial reporting quality throughout the entire sample period. Thus, financial reporting quality continues to be dependent on the degree of specialization of an audit firm in both the pre- and post-SOX periods; however, the impact of auditor size as a surrogate for quality has diminished. Originality/value The SOX Act of 2002 represented one of the most significant changes in the regulation of audits. This paper adds to the literature by examining the Act’s effects on financial professionals’ perception of the impact of audit firm characteristics on their client’s financial reporting quality.

The scrutiny auditing received following Enron's failure and the accounting scandals at Worldcom and other companies provides compelling evidence that auditing matters and is important. What is unclear, however, is whether auditing was sufficiently “broken” in the first place to warrant the radical reforms and changes effected by the Sarbanes-Oxley Act of 2002 (SOX). While there have been some high profile corporate failures and accounting scandals, the number of demonstrated audit failures as evidenced by successful litigation or U.S. Securities and Exchange Commission (SEC) sanctions is quite small and approaches an annual failure rate of close to zero. In addition, our interpretation of the academic research suggests that many of the “solutions” embodied in SOX are not only unlikely to solve the profession's alleged problems; they may well have serious unintended negative consequences. So the disconnect is large between the scientific evidence on audit quality and institutional changes premised on the assumption that auditing is broken. This paper attempts to stimulate research into some of the important questions implicitly raised by SOX regarding the audit profession's potential failings. An outline of our primary observations and suggestions are presented in the paper's Introduction.

SYNOPSIS We investigate the impact of the Sarbanes-Oxley Act (SOX) on corporate bondholder value by examining the bond market reaction to news events leading up to the passage of SOX. The net impact of SOX on bondholder value is difficult to predict, and there are many reasons why it may be viewed as either good or bad news. Our primary analysis reveals a significant decline in average bondholder value around these events. In addition, cross-sectional tests find that the decline is significantly larger among riskier bonds and among bonds held by firms that are expected to experience the greatest changes under SOX. Thus, our findings are consistent with the bond market expecting the exogenously imposed changes under SOX to make bondholders worse off.

Purpose This paper aims to examine the effect of the Sarbanes–Oxley Act (SOX), which was signed by President George W. Bush and came into effect on July 30, 2002, on firm productivity. Design/methodology/approach The authors use the total factor productivity (TFP) as our measure of firm productivity. Findings Analyzing annual firm-level data from the Compustat database for the period of 1991-2006, the authors find that firm productivity increases at a higher rate in the post-SOX period. The results indicate that, although firms incur significant costs in complying with the requirements of the SOX, they also benefit from these requirements as evidenced by the improved productivity over time post-SOX. There is also a shift in the output elasticities from capital toward labor. The SOX has a positive effect on the output elasticity of labor but a negative impact on that of capital. Research limitations/implications The results have the following important implications. The SOX is a value-enhancing regulation in that it not only strengthens a firm’s corporate governance but also improves its productivity. However, compliance with the SOX can impose a long-term cost on firms: the decrease in the capital investment, leading to a decline in the output elasticity of capital. If this decline in the capital investment continues, it can have an adverse effect on firm productivity in the long term. Originality/value This paper extends the literature along the line of the actual operational effects of the SOX regulation by examining its effect on the productivity of firms.

Purpose – In most firms, accounting and financial information and reporting systems are either incorporated or embedded in computer-based information systems (IS). Despite the important roles that these computer-based IS play in facilitating the SOX Act compliance initiatives, the act is silent on the roles of the CIOs, although it does stipulate specific functions for the CEOs, CFOs, and the auditors. Based on a detailed analysis of the extant literature, this article argues that IT units, under the leadership of the CIOs, contribute significantly in the procurement, design, implementation, and the governance of these computer-based IS. The paper aims to discuss these issues. Design/methodology/approach – The researchers generate and empirically test hypotheses using a panel data set obtained from press releases issued by firms following the hiring of CIOs between 1999 and 2005. Findings – The results reveal that, after the enactment of the SOX Act in 2002, many firms hired new CIOs in the post-SOX Act period. Also, many of these executives were hired to fill newly created Chief information officer (CIO) positions. The results support the argument that the SOX Act has influenced the roles of senior IT executives and IT governance. Research limitations/implications – Although this study focused on hiring trends, there are other characteristics associated with CIOs that might have an impact on corporate IT governance. Future studies could investigate whether or not, for instance, firms reported fewer IT material weaknesses before or after the hire of the CIOs. Originality/value – This research presents the argument and detailed discussion that while the SOX Act does not explicitly require the CIOs to sign off on the accounting/financial statements and reports, their role is fundamental in making the firm meet the SOX Act compliance standards.

Our study proposes several current data mining methods to predict bankruptcy after the Sarbanes-Oxley Act (2002) using 2007-2008 U.S. data. The Sarbanes-Oxley Act (SOX) of 2002 was introduced to improve the quality of financial reporting and minimize corporate fraud in the U.S. Because of this SOX implementation, a companys financial statements are assumed to provide higher quality financial information for investors and other stakeholders. The results of our data mining approaches in our bankruptcy prediction study show that Bayesian Net method performs the best (85% overall prediction rate with 94% in AUC), followed by J48 (85% with 82% AUC), Decision Table (83.52%), and Decision Tree (82%) methods using financial and other data from the 10-K report and Compustat. These results are better than previous bankruptcy prediction studies before the SOX implementation using most current data mining approaches.

ABSTRACT: Regulators have expressed concern that investors are confused by the large number and questionable materiality of accounting restatements since passage of the Sarbanes-Oxley Act (SOX). This study looks for evidence of investor confusion by examining stock returns and trading volume. I find that the initial price reaction to restatement announcements becomes significantly less negative after SOX, even after controlling for the less egregious nature of post-SOX restatements. To assess whether the less negative reaction represents under-reaction, I test whether stock prices drift negatively over the months and years after the initial reaction. I find no evidence of statistically negative drifts unique to the post-SOX period. In fact, I find that post-SOX drifts are statistically less negative than pre-SOX drifts, suggesting that price efficiency actually improves after SOX. Finally, I find no evidence that post-SOX restatements have higher trading volume after controlling for contemporaneous returns, suggesting no increase in disagreement among investors about the restatements. Thus, the findings provide little evidence that investors are confused by post-SOX restatements.

PurposeThe literature of financial economics documents a causal relationship between the level of information asymmetry in the firm and its dividend policy. Nevertheless, this relationship suffers endogeneity problems arising from reverse causality and omitted variable bias. The purpose of this study is to examine how the dividend policy reacts to changes in asymmetric information in an exogenous research setting.Design/methodology/approachTo overcome endogeneity concerns, the authors employ the enactment of the Sarbanes-Oxley Act (SOX) in the US in 2002 as a source of an exogenous variation in the level of information asymmetry to study the potential effect that this variation might have on the dividend policy. In doing so, we utilize a difference-in-differences research design, in which the treatment group is US publicly traded firms that were exposed to the policy and the control group is publicly traded companies in the UK where SOX was not enacted. Both countries have similar institutional settings and enforcement of laws, which makes them comparable in this research context.FindingsThe authors’ findings show that, compared to UK companies, US firms increase their dividend payments following a reduction in asymmetric information as a result of the SOX enactment.Originality/valueThe study contributes to the literature of financial economics by showing that policy makers can mitigate agency conflicts and protect shareholders by improving the corporate information environment and reducing asymmetric information.

Problem Area: The American company Enron was the seventh largest company notated on the stock market when it went bankrupt due to extensive accounting frauds in December 2001. By manipulating the financial reports, the management of Enron was able to hide huge debts through transactions with external companies. Therefore, they were able to deceive the public by reporting huge profits while the company, in reality, was generating a negative result. As a result of the bankruptcy, 40 billion dollars disappeared and tens of thousands of employees lost their jobs and pension savings. After the Enron scandal, further accounting frauds were discovered in the US, such as WorldCom and Tyco. The WorldCom bankruptcy is, as of today, the largest bankruptcy in the world. Following the scandals and the accounting frauds in a number US companies, the US congress passed a law – the Sarbanes-Oxley Act of 2002 (SOX).

Purpose: The purpose of the study is to examine how companies in Sweden have managed to implement SOX Sec. 404 – for ensuring internal control. The researchers will examine how different Swedish companies have approached the issue and how they have chosen to implement SOX sec. 404 in their organisation. Have some companies been more effective in their implementation than others and why? Limitations: SOX cover several areas around internal control and reporting. The authors will mainly study Sec. 404, which treats internal control over financial reporting, and is the section that has demanded most effort to comply with. Methodology: The study was conducted by a qualitative research method by conducting personal interviews with respondents from three different companies in Sweden. All of the participating companies in the study are obliged to comply with SOX. Conclusion: The researchers in this study have identified differences in the approach towards SOX-compliance by the participating organisations. The lack of how to implement guidance and the different approaches taken by companies towards SOX compliance may suggest that there is no supreme implementation guide that is suitable for all companies in order to achieve compliance. Proposals for Further Research: As the implementation phase just recently was completed the authors would like to find out how companies are sustaining compliance in the future. Researchers could focus on sustainable compliance as compared to this study where sustainable compliance is merely limited to one section. In addition, it would be interesting to carry out an in-depth study on one company to evaluate their implementation on a deeper level. This would give the researcher a deeper understanding which is more difficult to achieve when conducting a comparative study.

Under slutet av 1900-talet och början av 2000-talet skakades USA av stora redovisningsskandaler. Som en följd av dessa skandaler infördes den amerikanska lagen SOX år 2002 för att återskapa förtroendet för bolagens finansiella rapporter. Även Sverige drabbades av redovisningsskandaler, främst Skandia-affären, vilket resulterade i att Bolagskoden uppkom. Då bolag agerar på fler marknader än den inhemska kan problem uppstå med vilka redovisningsstandarder som bolagen skall efterfölja. Uppsatsen ämnar undersöka om Bolagskoden bör harmoniseras med SOX, när det gäller den interna kontrollen. För att kunna besvara denna frågeställning har fyra delsyften tagits fram. Tillvägagångssättet för uppsatsen grundar sig på en kvalitativ ansats då regelverken som jämförs är av kvalitativ karaktär. Data inhämtas till största delen från skriftliga källor och kompletteras med en undersökning av 15 bolags årsredovisningar samt intervjuer. De teorier som är relevanta för uppsatsen är Bolagsstyrning, Intressentmodellen, COSO-modellen, Agentteorin samt CSR. Författarna har även använt vetenskapliga artiklar och tidigare forskning för att erhålla ytterligare djup i diskussionerna. Bolagskoden omfattar alla börsbolag på A-listan samt de bolag på O-listan med ett marknadsvärde överstigande 3 miljarder kronor. Syftet med Bolagskoden är att förbättra bolagsstyrningen och den interna kontrollen samtidigt som kunskapen och förtroendet för bolagens redovisning ska förstärkas. Koden verkar som ett komplement till Aktiebolagslagen. Grundprincipen är ”följ eller förklara”. Avvikelser ska motiveras av bolagen. En bolagsstyrningsrapport med information om hur Bolagskoden tillämpas skall bifogas bolagens årsredovisning. SOX är en lag som berör alla bolag, såväl amerikanska som utländska, som agerar på den amerikanska marknaden. Bolag kan även beröras av SOX indirekt genom att de sköter en del av bolagens verksamhet via outsourcing eller är underleverantörer. Syftet med lagen är att återställa investerarnas, de anställdas samt den aktieköpande allmänhetens förtroende för noterade bolag samt att garantera att den information som finns i den finansiella rapporteringen stämmer med verkligheten. Efter genomgång av de 15 utvalda bolagen fann författarna att bolagen har en tendens att avvika från samma punkter. Dessa är: 2.1.2 och 2.1.3 som behandlar valberedningen, 3.8.2 som behandlar bolagens revisionsutskott samt 4.2.1 som behandlar ersättningsutskott och dess oberoende. Uppsatsen visar att det existerar skillnader mellan regelverken. Den primära skillnaden är att Bolagskoden grundar sig på ”följ eller förklara”- principen. SOX däremot grundar sig på ”följ”- principen. Författarna anser att vissa av regelverkens skillnader kan användas för att utveckla Bolagskoden till det bättre. En harmonisering av Bolagskoden och SOX bör ske gällande dessa skillnader. Den ökade globaliseringen leder till att mer enhetliga redovisningsstandarder efterfrågas, vilket är problematiskt då nationernas redovisningstraditioner och samhällsstrukturer skiljer sig markant åt. Att implementera SOX fullt ut i Sverige skulle troligtvis inte fungera i praktiken då Sverige generellt sett inte har samma hårda sanktionssystem mot brott som USA har. En kompromiss mellan regelverken skulle kunna öka incitamentet för ansvarstagande och skapa en bra miljö för god redovisningssed anser författarna. Genom denna uppsats har författarna kommit fram till att Bolagskoden inte fungerar i sin nuvarande form, men att applicera SOX fullt ut är inte ett alternativ. Författarna förespråkar en striktare regelsamling än den som existerar i Sverige.

Thesis (Ph. D.)--Management, Georgia Institute of Technology, 2007.
Dr. Bryan Church, Committee Chair ; Dr. Eugene Comiskey, Committee Member ; Dr. Arnold Schneider, Committee Member ; Dr. Charles Mulford, Committee Member ; Dr. Haizheng Li, Committee Member.

Inledning: Som svar på de redovisningsskandaler som förekommit desenaste åren så tillkom lagen Sarbanes Oxley Act i USA. Lagen har ävenpåverkat länder runt om i världen som är noterade på den amerikanskabörsen, därav är även ett antal svenska bolag berörda av lagen. Syftet medlagen är att återställa investerares förtroende för aktiemarknaden ochgarantera att den finansiella informationen från företagen stämmer överensmed verkligheten. För att säkerställa tillförlitligheten i de finansiellarapporterna sätts interna kontroller upp i företagen som gör det lättare attupptäcka fel och bedrägerier i god tid. Intern kontroll innebär att man följerupp styrningen av verksamhetens processer. Oegentligheter i den finansiellarapporteringen kan leda till höga straff i form av böter och fängelse vilketökar kraven på ledningen då de hålls som ytterst ansvariga för attrapporteringen är korrekt. Implementeringen av lagen är en dyr ochtidskrävande process för bolagen och kan upplevas som komplex ochbyråkratisk. Man har under senaste tiden sett en tendens till att många bolagväljer att avregistrera sig från den amerikanska börsen.Syfte: Syftet med denna uppsats är att undersöka hur några få svenskaföretag ser på SOX 404, intern kontroll, samt vilka konsekvenser processenhar medfört efter införandet. Studien syftar även till att undersöka positivaoch negativa effekter som arbetet med SOX 404 har inneburit samt omoväntade synergieffekter har uppstått under arbetets gång.Metod: Undersökningen har utförts genom en kvalitativ studie, där SOXansvariga på Volvo bussar, SKF och Swedish Match har intervjuats.Resultat: De konsekvenser som har uppkommit efter införandet av SOX hossvenska bolag har varit relativt förväntade. Man har dock upptäckt en delbåde positiva och negativa synergieffekter under arbetets gång hos vissabolag. Förutom att SOX har inneburit betydligt högre kostnader än vadföretagen hade räknat med så visar undersökningen även att SOX har stärktden interna kontrollen hos företagen samt bidragit med en delkonkurrensfördelar.
Uppsatsnivå: C

This paper discusses the history of auditor independence in the United States and the regulation of the public accounting profession over time. Special emphasis is put on the increasing importance that regulators have placed on the perception of auditor independence and on its effectiveness. Next, I analyze the efficacy of the Sarbanes-Oxley Act of 2002 and provide several reasons for its shortcomings. Finally, I provide two distinct suggestions aimed at improving the current audit landscape.

Mestrado em Contabilidade - Ramo Auditoria
Desde o ano de 2002 até à presente data ocorreram diversos acontecimentos importantes relacionados com a auditoria quer na União Europeia quer nos EUA. Nos EUA, surge a lei Sarbanes Oxley Act em 2002, que foi aprovada na sequência dos grandes escândalos financeiros que ocorreram um pouco por todo o lado, mas com especial incidência nos EUA. A referida lei, destina a proteger os investidores através da precisão e da fiabilidade das demonstrações financeiras das empresas emitentes de valores mobiliários. Em Portugal, as empresas cotadas seguem os regulamentos e recomendação emitidas pela CMVM. A União Europeia de modo a harmonizar o funcionamento eficiente do seu mercado de capitais emitiu o Regulamento N.º 1606/2002, com o objectivo de assegurar um elevado grau de transparência e credibilidade da informação financeira. Este estudo tem por objectivo analisar as alterações normativas na auditoria após a aprovação da lei “Sarbanes Oxley Act” e verificar se tiveram efeitos na opinião do Auditor. Para perceber como evoluiu a opinião do auditor, neste período de grandes alterações, realizamos um estudo empírico, onde analisamos os relatórios de auditoria das sociedades cotadas pertencentes ao PSI Geral no período de 2001 até 2008. De acordo com os dados obtidos, concluímos que a opinião do revisor/auditor teve uma evolução significativa positiva. Esta conclusão foi reforçada, pelos relatórios positivos, obtidos pela Comissão do Controlo de Qualidade em igual período, em matéria de controlo de qualidade programados aos revisores/auditores.
Since the year 2002 to date there were several important events relating to audit in the European Union and USA. In the U.S., there is the Sarbanes Oxley Act of 2002 which was passed in the wake of major financial scandals that have occurred all over the place, but with a focus in the U.S. The law intended to protect investors through the precision and reliability of financial statements of companies issuing securities. In Portugal, the listed companies follow the regulations and recommendations issued by the CMVM. The European Union in order to harmonize the efficient functioning of its market capital has issued Regulation No. 1606/2002, with the aim of ensuring a high degree of transparency and credibility of financial reporting. This study aims to examine the legislative changes in the audit since the enactment of the Sarbanes Oxley Act and determine whether effects on the opinion of the Auditor. To understand how the auditor's opinion has changed in this period of great change, we conducted an empirical study, which analyzed the audit reports of listed companies belonging to PSI General from 2001 until 2008. According to these data, we conclude that the opinion of the auditor had a significant positive. This conclusion is reinforced by the positive reports obtained by the Committee on Quality Assurance in the same period, in terms of quality control programmed to reviewers/auditors.

Magisteruppsats i företagsekonomi inom ramen för Civilekonomprogrammet med företagsekonomisk inriktning vid Internationella Handelshögskolan i Jönköping Titel                                   Koll på SOX – En fallstudie av implementeringen av SAP GRC Version 10 inom delar av ABB-koncernen. Författare                           Lars Björmsjö, Jacob Öberg Handledare                       Gunnar Rimmel Ämnesord                         GRC, intern kontroll, SAP, Sarbanes-Oxley Act Sammanfattning Bakgrund (och problem): Med de redovisningsskandalerna som skakat den finansiella världen i början av 2000-talet, har lagstiftningen stramats åt för företag för att förhindra att detta inträffar igen. Lagar som SOX ger tydliga direktiv på hur företagen ska stärka sina interna kontroller. Att efterleva SOX är en kostsam historia då, de ställer hårda krav på intern kontroll samt system för att hantera de ökade kontrollerna. Problembakgrunden till denna uppsats bygger på kraven att efterleva SOX och hur ett internationellt företag kan använda sig av ett IT-verktyg som SAP GRC för att klara av de hårdare kraven. Syfte: Syftet med detta examensarbete är att utföra en fallstudie på hur processen bakom implementeringen av SAP GRC version 10 ser ut i ett multinationellt företag som ABB och vilken roll SOX har i sammanhanget Avgränsningar: Författarna har valt att avgränsa sig till att enbart titta på implementeringen av SAP GRC, och tittar då inget på andra aktörers liknande produkter. Vidare har författarna valt att bara titta på implementeringen inom det brittiska ABB.  Metod: Studien har ett kvalitativ angreppssätt. Studien är en fallstudie vilket innebär att personlig kontakt i form av telefonintervjuer har varit enda metoden för att samla in data till empirin. Resultat/Slutsats: Författarnas slutsats av undersökningen fastställs i att SOX har en väldigt viktig roll i implementeringen av SAP GRC, det är anledningen till implementeringen. Vidare har det framkommit att implementeringen är ett väldigt omfattande arbete, som är mycket kostsamt i både monetära mått samt tid. Dock är detta, det mest effektiva och kostnadseffektiva sättet att efterfölja SOX från ett ABB perspektiv Diskussion: Författarna ser ett par områden för förbättring inom användningen av GRC på ABB för att få ut det mesta av verktyget, samt att effektivera hanteringen av risker. Vidare ser författarna förslag till vidare forskning. I dag finns det ingen direkt forskning på konceptet eller verktyget GRC, författarna finner det intressant om en vetenskapligt grundad definition skulle undersökas.
Master Thesis in Business Administration within the Civilekonomprogram at Jönköping International Business School Title                                   Keeping track of SOX – A case study of the implementation of SAP GRC Version 10 in parts of the ABB Group Authors                              Lars Björmsjö, Jacob Öberg Tutor                                                        Gunnar Rimmel Subject terms            GRC, internal control, SAP, Sarbanes-Oxley Act Abstract Background (and problem): In the reflections of the accountings scandals that occurred in the beginning of this millennium, legislations have tightened to prevent this kind of event to reoccur. Legislations like SOX provide clear directives on how companies should strengthen their internal controls. Compliance with SOX is a costly affair when, they place heavy demands on internal controls and systems to manage the increased controls. Problem discussion to this thesis is based on the requirements to comply with SOX and how an international company can use a tool like SAP GRC to meet the stricter requirements  Purpose: The purpose of this thesis is to conduct a case study on how the process behind the implementation of SAP GRC version 10 looks in a multi-national company such as ABB and the role played by SOX in the implementation process. Delimitations: The authors have chosen to delimitate thesis merely to look at the implementation of SAP GRC, and do not look at other players at the market, nor their GRC solutions. Furthermore, the authors have chosen to only look at the implementation of SAP GRC at ABB in the United Kingdom. Method: The study has only a qualitative approach. The study is a case study which means that personal contact in the form of telephone interviews has been the only method to gather data for empirical choose of the authors. Results and Conclusions: The authors' conclusion of the study acknowledges that SOX has a very important role in the implementation of SAP GRC, and is the main reason for the implementation. Furthermore, it has emerged that the implementation is a very comprehensive work, which is very costly in both monetary and time measures. However the authors have concluded that implementing SAP GRC is the most efficient and cost effective way to comply with SOX from an ABB perspective. Discussion: According to the authors opinion there are a few areas for improvement in the use of GRC at ABB, in order to get the most out of the tool and to streamline the management of risks. Due to the lack of current research within the field, the authors would find it very interesting if a scientifically based definition of GRC would be investigated.

Sarbanes-Oxley Act, SOX, har inneburit stora förändringar för de företag som

är noterade på en amerikansk börs. Med höga krav på en struktur för interna

kontroller av processer inom företaget har detta inneburit mycket arbete för

företagen och revisorer. Framförallt under införandet men även efteråt i det

dagliga arbetet.

I denna uppsats redogör vi för hur svenska företag ser på Sarbanes-Oxley Act

och vad de anser om hur väl regelverket uppfyller sina mål att förhindra fel

och fusk i redovisningen samt den finansiella rapporteringen. För att komma

fram till våra slutsatser har vi intervjuat sex olika personer som på något sätt

kommer eller har kommit i kontakt med SOX. Det är svar från personer på

ABB, AstraZeneca, Autoliv, Ericsson samt Ernst & Young som varit grunden

i vårt arbete.

Det visade sig att de alla ansåg att SOX höjt kvaliteten i deras redovisning och

hjälpt dem att hitta felaktigheter i ett tidigare skede. Dock är det tveksamt om

regelverket motverkar de riktigt omfattande bedrägerier vi sett och kanske

även i fortsättningen kommer se.

Purpose; Purpose of this thesis is to review the implementation process of SOX in one company to be able to estimate which factors that are significant for individuals when it comes to accepting SOX as a tool to improving processes.

Method: Our approach in attacking the reality has been the golden middle-way, which means we have went into the reality with already constructed theories but along as the study went on we have refined theories, thus shifting between inductive and deductive approach.

Results/conclusions; Important obstacles that prevented adoption of the innovation had to do the characteristic of the innovation and the size and complexity of the organization; however we believed that the most significant blockade against change was the non-existing communication between the three different parties, namely consultants, managers and end-users.

In response to several corporate scandals, the Sarbanes-Oxley Act of 2002 (SOX) implemented substantive corporate governance mandates that were adopted as federal law. It focused on restoring financial disclosure transparency and revitalizing investor confidence in the financial markets’ integrity. A few years thereafter, the 2008 financial crisis precipitated the enactment of the Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010 (Dodd-Frank Act). This Act aimed at forestalling another financial crisis through enhanced corporate governance regulation and placing meaningful restraints on undue risk-taking conduct. The chapter focuses on several key provisions of the SOX and the Dodd-Frank Acts, as well as SEC rules and regulations promulgated thereunder. Among these provisions as covered in this chapter are: CEO and CFO certifications, audit committees, executive clawback provisions, director independence, nominating and corporate governance committees, codes of ethics, corporate governance disclosures, say-on-pay and golden parachute provisions, loans to insiders, and equitable relief.

This chapter discusses the impact of Sarbanes-Oxley (SOX) Act on corporate information security governance practices. The resultant regulatory intervention forces a company to revisit its internal control structures and assess the nature and scope of its compliance with the law. This chapter reviews the organizational implications emerging from the mandatory compliance with SOX. Industry internal control assessment frameworks, such as COSO and COBIT, are reviewed and their usefulness in ensuring compliance evaluated. Other emergent issues related to IT governance and the general integrity of the enterprise are identified and discussed.

Compliance with the Sarbanes-Oxley Act (SOX) has become a new indispensable standard operating procedure for public companies competing in the business world of the 21st century. The SOX compliance is crucial for capital market stakeholders that want to ensure transparent insights into the companies’ business operations and financials following the revelation of significant fraud in financial reporting by Enron, HealthSouth, WorldCom, and Global Crossing. From the onset the demands of SOX compliance have resulted in increased responsibilities from companies’ finance and accounting departments. For more effective compliance and monitoring, the human resource (HR) and information technology (IT) departments need to be more strategically involved (Deloitte & Touche, 2003). One tool that may ease the companies’ burden of SOX compliance is the human resource information system (HRIS), provided its role is expanded beyond the traditional scope of ensuring Equal Employment Opportunity (EEO)m compliance and supporting payroll systems (Fletcher, 2005).

Sarbanes Oxley Act (“SOX”; USA), the PCAOB, and the Dodd Frank Act (USA statute) and similar institutions in other countries have become major macroeconomic, sustainability, and IPE (international political economy) policies because of their significant domestic and cross-border multiplier effects across countries and industries via US multinational corporations (MNCs) and foreign companies that do business in the US and or list their shares/debts on US financial exchanges. SOX, the PCAOB and the Dodd Frank Act have had pervasive effects on accounting firms, consulting firms, and credit rating agencies (CRAs) in the US (e.g., disclosures, professional standards, regulation/compliance, standard-of-care, legal liability, internal controls, daily operations processes, etc.), but SOX, the Dodd Frank Act, and the PCAOB have failed.

The purpose of this chapter is to identify and analyze the challenges of creating new software in the public cloud due to legal regulations. Specifically, this chapter explores how the Sarbanes-Oxley Act (SOX) will indirectly affect the development and implementation process of cloud computing applications in terms of software engineering and actual legality of said software solutions. The goal of this chapter is twofold - to bring attention to the need for specific analysis of legal issues in public clouds (as opposed to general analysis), and to illustrate the need for cloud developers to address legal constraint while creating their platforms, in order to increase their viability in the corporate environment.

The most popular frauds known in the early 21st century eroded investor and society confidence in the financial markets contributing to economic and social destruction. In response, the United States enacted the Sarbanes-Oxley Act (SOX) and the European Union issued several regulatory instruments, but the fraud cases have continued. Motivated by the idea that if we understand where the possible causes are, then the problem of fraud can be avoided or at least reduced in its dimensions and consequences. So, this study intends to understand the causes of fraud and its relevance, identifying their common points and also measuring if they changed in the post-SOX period. From the analysis carried out, it results that the lack of an ethical tone in top management is the cause that remains transversal to both sides of the Atlantic and to the two periods studied. In the post-SOX period, the fraudulent financial statements lost relevance, ceasing to be part of the most relevant causes, and internal control failures became one of the most relevant causes.

Today is the time of transnational corporations and large companies. They bring to their shareholders and owners the major profits, and they are the main sponsors of scientific and technological progress. However, the extensive way of its development is not possible for environmental, marketing, resource, and many other reasons. So, the main field of competition between companies becomes a fight for the client, the individualization of approach to him, and the maximum cost reduction. At the same time, a series of scandals that erupted in the early 2000s with such major corporations as Enron Corporation, WorldCom, Tyco International, Adelphia, and Peregrine Systems has shown that the system of corporate governance, on which depends the welfare of hundreds of thousands of people, requires serious improvements in terms of transparency and openness. In this regard, the U.S. adopted the Sarbanes-Oxley Act of 2002, under which management companies legally obliged to prove that his decisions are based on reliable, relevant, credible and accurate information (Devenport & Harris, 2010).