《毕业论文外文翻译-ERP系统在财务报告内部控制的作用.doc》由会员分享,可在线阅读,更多相关《毕业论文外文翻译-ERP系统在财务报告内部控制的作用.doc(16页珍藏版)》请在taowenge.com淘文阁网|工程机械CAD图纸|机械工程制图|CAD装配图下载|SolidWorks_CaTia_CAD_UG_PROE_设计图分享下载上搜索。
1、ERP系统在财务报告内部控制的作用作者:约翰J莫里斯堪萨斯州立大学【摘要】:萨班斯-奥克斯利法案法例中强调,ERP系统的重要作用是运用内部控制反映公司的基本建设,为此 ERP系统软件开发供应商也增加了对内部控制的应用。他们认为,这些内置的控制和其他功能将帮助企业改善其财务报告内部控制就如萨班斯法案要求的那样。这项研究测试,通过检查萨班斯法案第404条在1994年和2003年之间实施ERP系统的公司合规内控数据。其结果表明,应用ERP 的公司相对于未应用ERP的样本公司较少报告内部控制弱点。它还发现,这种差异存在一般控制和特别控制中。关键词:企业资源规划;ERP;萨班斯-奥克斯利法案;萨班斯法案
2、第404条;内部控制1简介2002年的萨班斯法案要求企业将其内部控制的有效性的报告与财务报告作为一个整体努力,以减少欺诈和恢复完整的财务报告过程的一部分。ERP系统软件开发供应商已强调,ERP系统的重要作用是运用“内置”控制反映公司基本建设。他们在营销理念强调了产品的功能,声称这些系统将帮助企业按萨班斯法案所要求提高内部控制的有效性。这些供应商的声明激发了关于ERP系统对内部控制的影响一项有趣的实证问题研究。具体来说,是不是实现ERP系统的企业或多或少可能比未实现ERP系统的公司较少在其年度报告报告内部控制弱点?已经进行过这特定区域研究的经验/档案相对较少的,因为之前萨班斯法案内部控制的数据并
3、没有被公开报道。这项研究的方法通过在文献资料检查一个已经宣布实施ERP系统和一个还没有类似的公司控制样本公司的抽样调查的内部控制数据来发现差距。内部控制是在公司使用的以解决代理问题的许多机制之一。其他的机制还包括财务报告,编制预算,审计委员会和外部审计(Jensen和佩恩2003)。研究表明,内部控制降低了代理成本(Abdel-khalik 1993;Barefield 等,1993),有些甚至争辩说,即使没有萨班斯法案的要求,企业也有经济诱因报告内部控制(Deumes和Knechel,2008年)。他们的论点假定这些额外提供给有关的代理行为主体的信息可以减少了信息不对称和降低投资者的风险以及
4、权益资本成本。其他的研究发现,内部控制报告与公司盈余质量有关, (Chan 等, 2008;Ashbaugh-Skaife等,2008) ERP系统提供了一种机制,运用内部控制,旨在保证控制的准确性和快速,准确的财务报告财务信息的可靠性报告给股东。除了提供有关代理行为的外部委托人的增加保证,ERP系统也应有助于减轻大型企业各层次之间的管理的代理问题。使用内建控制以增加透明度的应该使各级代理商从中不可观察的行为中受益变得更加困难。这是可能的,但是,企业实施ERP系统可能无法利用的所有的内建的控制功能,无论是对经营合法的原因或者是因为管理层为了操纵盈余希望避免增加透明度的目的。通过这些控制措施的成
5、效的检查,这项研究不仅扩展了研究机构的理论流,还考察这种盈余管理与内部控制、一般控制和特别控制之间相关的整体检验假说。这项研究使用了108家在1994年和2003年之间宣布实施ERP系统的样本公司,与行业和规模相匹配的同等数目的控制公司。结果提供的证据表明,实现ERP 应用的企业相对比ERP没有应用的企业较少报告内部控制缺陷。这项研究进一步探讨内部控制弱点的成因,并认为导致应用ERP的公司相对于ERP没有应用的公司较少报告内部控制弱点与一般控制和特别控制相关联。这项研究还发现证据表明,应用ERP的公司优势会随着时间的推移日益增加,并建议企业加强ERP系统提供的内建控制以获得系统控制的经验。这些
6、发现非常重要,因为这两个萨班斯法案和ERP一直是许多讨论和近年来在学术界和专业团体的研究课题。成本往往是共同点,随着遵从萨班斯法案高成本以及实施ERP系统的高成本,成为许多研究问题的基础。这些发现提供了证据表明,ERP系统可能有助于改善内部控制,这是在辩解的ERP系统使用成本高许多论据之一。这项研究被认为是测试这些说法的第一个经验/档案,并提供在内部控制弱点起作用的相关因素,无论是学术界和专业界都应该会感兴趣。举例来说,最经常提到的因素是会计文件,政策,和程序。正如预期的那样,这一因素ERP企业比控制公司发现较少,也许在执行文件系统的过程需要努力。这项研究还扩展对IT和机构之间关系的理论研究流
7、,特别是内部报告对金融市场的信号和ERP系统来推动这一进程的联系。本文的其余部分组织如下:第二节总结以前的研究和发展的假说,第三节介绍了数据选择过程和研究方法,第四节实证结果,第五节总结。2以前的研究开发和假设内部控制背景内部控制在缓和企业多年来的代理问题起到了主要作用。Samson 等其他人(2006)的几个内部控制的程序文件早在1831年被巴尔的摩和俄亥俄铁路使用。在最近时期,内部控制一直是当出现一个世界著名的企业丑闻讨论的主题。例如,在20世纪70年代超过400家制作公司承认有可疑或非法支付给外国政府官员,政治家和政党,这导致了1977年外国腐败行为法案在颁布。除其他事项外,FCPA要求
8、上市公司制定和维护一个内部会计控制制度(USC1998)。在20世纪80年代,一些高调审计失败导致了反虚假委员会组织重新定义确定的内部控制制度的有效性和内部控制标准的委员会的成立(西蒙斯1997年)。他们研究的偶然因素,可能导致虚假财务报告的建议,上市公司,独立审计师,教育机构,证券交易委员会和其他监管机构(COSO,1985年)。他们的工作模型被定义为COSO内部控制框架(西蒙斯,1997年)。在COSO框架大致定义为“一个过程,内部控制的实体的董事会,管理层和其他人员,内部控制框架设计是为了确保和实现以下目标:提高效益和经营效率,保证财务报告的可靠性和遵从相关法律和法规(COSO 1992
9、年,1)。它指出,“有这些组件之间的协同和联动,形成一个综合系统,反应动态变化的条件” (COSO 1992年,1)。该框架还指出,控制是最有效的,当他们是实体的基础设施(COSO 1992,1),并进一步指出,“支持内部控制的质量控制措施和能力建设,避免不必要的成本,能够快速响应不断变化的条件”(COSO 1992年,1)。在世纪之交,另一组的公司丑闻导致了2002年萨班斯-奥克斯利法案,其中除其他外,需要对内部控制的有效性正式报告的制定。在COSO框架中起着遵守的关键作用,因为该法第404条要求公司在其年度报告(表格10- K),提供公司的财务报告内部控制鉴证报告及由注册会计师事务所出具单
10、独的管理报告。虽然其他框架可能被接受,美国证券交易委员会已明确表示,COSO框架符合美国证券交易委员会的标准是“可作为由美国证券交易所上市的公司评估框架用于管理的年度内部控制的目的评价和披露要求 ”( Gupta and Thomson 2006, 28)。虽然有内部控制在公司治理中发挥了多年的重大作用,萨班斯法案之前对内部控制的研究的经验/档案是有限的,大多是由于缺乏公共数据。内部控制被认为是“内部问题”,上市公司未要求披露有关的内部控制程序。随着萨班斯法案的制定,与内部控制相关经验/档案研究有明显增长。新增加的第302条和404条的报告要求放置在公共领域的信息研究人员正在使用的审查与内部控
11、制与公司治理的许多问题。萨班斯法案第302条,而在2002年成为有效的,只要是用于测试之间的内部控制薄弱环节和其他企业特征(Ge and McVay 2005;Ashbaugh-Skaife等,2007;Doyle等,2007)。萨班斯法案第 404条,需要对内部控制的更广泛的审查,于2004年成为是否有效的两个时间段。在第一阶段,符合要求的,如2003年截至2004年11月15号美国证券交易委员会的年度报告,加速申报者知名企业。第二个阶段,其中包括符合标准所有其他公司,一直延续几次,现在从2007年12月15日到2010年6月15日结束的有由审计师出具有效的鉴证报告以及管理报告,(SEC 2
12、009)。虽然从一个公司到另一个确切形式和内部控制管理报告的语言可能会有所不同,该报告必须披露,如果在对财务报告内部控制的任何重大缺陷。因此,现在可以测量通过分析这些材料在报告披露弱点判断内部控制的有效性。第404条已被用来研究人员检查(Raghunandan and Rama 2006)作为审计的成本增加,审计延误等问题(Ettredge等人,2006),申报者不足百分之报告(Grant et al. 2008),内部控制弱点(ICW)和权益成本的关系(Ogneva等,2007; Ashbaugh-Skaife 等,2009),内部控制弱点和管理成本的关系(Ashbaugh-Skaife 等
13、,2008;Chan 等,2008)。虽然内部控制相关经验/档案研究相对较新,有一个关于公司治理的文献相当前体,其中大部分使用的是代理理论基础(布伦南和所罗门,2008年)。艾森哈特1989提供了如财务报告和审计,以提供有关的代理。 ERP系统的推动将这个监察过程的方法。首先,他们能够快速,财务信息的主要准确的报告,但更重要的是,它们包括功能,便于实施和用来确保在报告中财务信息的准确性,内部控制的执行。有人会想到企业实现ERP系统,以最大限度地利用这些内置的控制功能,不仅降低代理成本,而且减少了内部控制在萨班斯法案第404号公布的弱点。这些内置的控制是可能的,因为在部分系统都是围绕着设计概念单
14、一,集成的系统,用于捕捉在整个公共数据库中的数据这家公司。相比之下,大多数遗留系统,围绕个人的需要演变,功能区已在几十个甚至上百个单独的计算机信息传播系统(Davenport 1998)。虽然原有系统可能包括一些内置的控件,一个不希望这些控件会像那些成为一个综合的ERP设计有效系统。例如,一个典型的ERP系统将包括配套购买内置控件订单,接收文件和发票的三方配合,采取综合优势所有三个功能区。遗留系统,另一方面,可对购买不同的应用,接收和应付账款有一些内置的控制功能,但不互相沟通。因此,手动控制将被用来补充内建的控制和体制上,而不是电子,匹配的文件之前,授权支付。审计准则第5号(AS No. 5)
15、,由上市公司会计监督发行董事会发布(PCAOB),提供了对信息技术与内部控制的关系有所了解。例如,在附录的AS号5 B,它指出,“完全自动化应用控制,一般不受故障由于人为故障。这功能允许审计师使用的“标杆”战略.基准自动化应用控制可用于购买软件使用时,程序更改的可能性微乎其微,例如公司,尤其是有效的,当供应商不允许访问或修改的源代码“(PCAOB 2007, B28, B32)。由于ERP系统是购买的软件,相对于传统系统,这是发展和维持内部,公司员工将最有可能获得的遗留系统的源代码,但不是ERP系统。鉴于所有这些因素,人们所期望的ERP系统有一个对财务报告内部控制的有效性产生积极的影响。然而,
16、相反的观点被提出,只是因为公司实施ERP系统,他们可能没有考虑到所有内置的控制功能。这是可能的,例如,实施期间,控制某些功能可能不被激活。或者,在一个更险恶的观点,高级管理人员可以选择覆盖控制功能,以处理数据来实现“盈余管理”,这说法被Brazel and Dang 认同(2008),谁主张通过对财务数据的高级管理人员,增加控制一致在一个集中的ERP系统将导致盈余管理增加。在他们的论点,他们引用之前的研究,发现在审计和内部控制质量的减少通过以下ERP (Bagranoff and Vendrzk 2000;Wright and Wright 2002; Hunton 等,2004; Janvr
17、in 等;2004; Brazel and Agoglia,2007)。但布雷泽尔和Dang(2008)也指出,这项研究,包括它们的实现,ERP的过程中采用了早年的地方之前如萨班斯 - 奥克斯利法案,并认为它是可能的,因为这些保障措施改善。事实上,在以下SOX内部控制的日益重视使得它有可能是通过企业ERP系统早在周期以来所利用内置的功能,完善内部控制,这导致了以下的假设中的另一种形式表示。翻译如下:The Impact of Enterprise Resource Planning(ERP) Systems on the Effectiveness ofInternal Controls ov
18、er Financial ReportingJohn J. MorrisKansas State UniversityABSTRACT: Software vendors that market enterprise resource planning ERP systems have taken advantage of the increased focus on internal controls that grew out of the Sarbanes-Oxley SOX legislation by emphasizing that a key feature of ERP sys
19、tems is the use of “built-in” controls that mirror a firms infrastructure. They argue that these built-in controls and other features will help firms improve their internal control over financial reporting as required by SOX. This study tests that assertion by examining SOX Section 404 compliance da
20、ta for a sample of firms that implemented ERP systems between 1994 and 2003. The results suggest that ERP-implementing firms are less likely to report internal control weaknesses (ICW) than a matched control sample of non-ERP-implementing firms. It also finds that this difference exists for both gen
21、era(entity-wide), and individual (account-level) controls.Keywords: enterprise resource planning; ERP; Sarbanes-Oxley; SOX; Section 404; internal control.I. INTRODUCTIONThe Sarbanes-Oxley Act of 2002 (SOX) requires companies to report on the effectiveness of their internal controls over financial re
22、porting as part of an overall effort to reduce fraud and restore integrity to the financial reporting process. Software vendors that market enterprise resource planning (ERP) systems have taken advantage of this new focus on internal controls by emphasizing that a key feature of ERP systems is the u
23、se of “built-in” controls that mirror a firms infrastructure. They emphasize these features in their marketing literature, asserting that these systems will help firms improve the effectiveness of their internal controls as required by SOX.These vendor statements motivate an interesting empirical re
24、search question about the impact of ERP systems on internal control. Specifically, are firms that implement ERP systems more or less likely to report internal control weaknesses in their annual reports than firms that do not? Relatively little empirical/archival research has been conducted in this s
25、pecific area, because prior to SOX, internal control data did not have to be publicly reported. This study addresses that gap in the literature by examining internal control data that is now available for a sample of firms that have announced implementation of ERP systems and a control sample of sim
26、ilar firms that have not.Internal control is one of many mechanisms used in business to address the agency problem. Others include financial reporting, budgeting, audit committees, and external audits (Jensen and Payne 2003) Studies have shown that internal control reduces agency costs (Abdel-khalik
27、 1993; Barefield et al. 1993), with some even arguing that firms have an economic incentive to report on internal control, even without the requirements of SOX (Deumes and Knechel 2008). Their argument assumes that providing this additional information to the principal (shareholder) about the behavi
28、or of the agent (management) reduces information asymmetry and lowers investor risk and, therefore, the cost of equity capital. Other research has found that weaknesses in internal controls are associated with increased levels of earnings management (Chan et al. 2008; Ashbaugh-Skaife et al. 2008). E
29、arnings management is the agency problem that motivated SOX legislation in the first place, specifically earnings manipulation by Enron, WorldCom, etc. ERP systems provide a mechanism to deliver fast, accurate financial reporting with built-in controls that are designed to ensure the accuracy and re
30、liability of the financial information being reported to shareholders.In addition to the increased assurances provided to the external principals (shareholders)about the behavior of the agents (management), ERP systems should also help mitigate the agency problem between various levels of management
31、 in large corporations. The added transparency combined with the use of built-in controls should make it more difficult for agents at all levels to benefit from unobservable behavior. It is possible, however, that firms implementing ERP systems may not take advantage of all the built-in control feat
32、ures, either for legitimate business reasons or because management wants to avoid the added transparency in order to manage (manipulate)earnings. By examining the effectiveness of these controls, this study not only extends the agency theory stream of research, it also examines this tension between
33、earnings management and internal control with testable hypotheses related to overall internal controls, general(entity-wide)controls, and specific (account-level) controls.The study uses a sample of 108 firms that announced implementation of ERP systems between 1994 and 2003, and an equal number of
34、control firms, matched by industry and size. The results provide evidence that ERP-implementing firms are less likely to report internal control weaknesses (ICW) than the non-ERP control firms. This study further examines factors contributing to ICW and finds that those related to general (entity-wi
35、de) controls and specific (account-level) controls are both less likely to contribute to ICW in ERP firms than in non-ERP control firms. This study also finds evidence that the advantage for ERP firms strengthened over time, which suggests that firms may be implementing more of the built-in controls
36、 provided by ERP systems as they gain experience with the system.These findings are important because both SOX and ERP have been the subject of much discussion and research in the academic and professional communities in recent years. Cost is often the common denominator, with the high cost of SOX c
37、ompliance and the high cost of implementing ERP systems used as the basis for many research questions. These findings provide evidence that ERP systems may contribute to improved internal controls, which is one of many arguments used in justifying the high cost of ERP systems. This study is believed
38、 to be the first empirical/archival test of those claims, and provides information about the factors that contributeto internal control weaknesses(ICW) that both the academic and professional communities should find interesting. For instance, the most often cited factor is accounting documentation,
39、policy, and/or procedures. As expected, this factor is found less frequently for ERP firms than for the control firms, perhaps justifying the effort needed to document systems during the implementation process. This study also extends the research stream on the relationship between IT and agency the
40、ory, in particular the link between the signaling effect of internal control reporting to the financial markets and the use of ERP systems to facilitate that process.The remainder of this paper is organized as follows: Section II summarizes prior research and develops the hypotheses, Section III des
41、cribes the data selection process and the research methodology, Section IV presents empirical results, and Section V concludes.II. PRIOR RESEARCH AND HYPOTHESES DEVELOPMENTInternal Control BackgroundInternal control has played a major role in moderating the agency problem in corporations for many ye
42、ars. Samson et al. (2006) document several internal control procedures used by the Baltimore and Ohio Railroad as early as 1831. In more recent times, internal control has been a subject of discussion whenever there is a prominent scandal in the corporate world. For instance, during the 1970s more t
43、han 400 corporations admitted making questionable or illegal payments to foreign government officials, politicians, and political parties, which led to enactment of the Foreign Corrupt Practices Act (FCPA) of 1977 (Staggers 1977). Among other things, the FCPA requires publicly traded companies to de
44、vise and maintain a system of internal accounting controls (USC 1998).During the 1980s, several high-profile audit failures led to creation of the Committee of Sponsoring Organizations of the Treadway Commission (COSO), organized for the purpose of redefining internal control and the criteria for de
45、termining the effectiveness of an internal control system (Simmons 1997). They studied the causal factors that can lead to fraudulent financial reporting and developed recommendations for public companies, independent auditors, educational institutions, the SEC, and other regulators (COSO 1985). The
46、 product of their work is known as the COSO Internal ControlIntegrated Framework (Simmons 1997). The COSO framework broadly defines internal control as “a process, effected by an entitys board of directors, management and other personnel, designed to provide reasonable assurance regarding the achiev
47、ement of objectives in the following categories: effectiveness and efficiency of operations, reliability of financial reporting, and compliance with applicable laws and regulations” (COSO 1992, 1).It states that “there is synergy and linkage among these components, forming an integrated system that
48、reacts dynamically to changing conditions” (COSO 1992, 1). The framework also points out that controls are most effective when they are “built into” the entitys infrastructure (COSO 1992,1) and further states that “built in controls support quality and empowerment initiatives, avoid unnecessary cost
49、s and enable quick response to changing conditions” (COSO 1992, 1).At the turn of the century, another group of corporate scandals resulted in enactment of the Sarbanes-Oxley Act of 2002(SOX) which, among other things, requires a formal report on the effectiveness of internal controls. The COSO framework plays a key role in compliance because Section 404 of the Act requires companies to include in their annual report (Form 10-K), a separate management report on the companys internal con