AUDIT ANALYTICS AUDIT
x8YaD9
x8YaD9
- No tags were found...
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
ESSAY 1<br />
Continuous<br />
Auditing—A New<br />
View<br />
Nancy Bumgarner, CPA<br />
Miklos A. Vasarhelyi, PhD 1<br />
1. INTRODUCTION—CONTINUOUS<br />
ASSURANCE THE THEORY 2<br />
This volume is intended as an update on the report Continuous Audit<br />
(also called Red Book) published by the CICA and AICPA in 1999. In that<br />
volume, some basic principles and a vision were presented that served as<br />
a basis for additional guidance work by the Institute of Internal Auditors<br />
(IIA) in 2005 and the Information Systems Audit and Control Association<br />
(ISACA) in 2010. Fifteen years after that 1999 report, this volume presents<br />
a much different state-of-the-art, and this essay proposes an expanded set<br />
of concepts largely adding to Vasarhelyi and Halper (1991) and joining it<br />
with an increasing set of experiences and literature from practice and<br />
academia. The evolution of IT, the emergence of big data, and the<br />
increasing use of analytics have rapidly changed the landscape and<br />
profile of continuous assurance and auditing. 3 Many of the current audit<br />
1 The suggestions and contributions of professors Michael Alles and Mr. Shrikant Despante are<br />
gratefully acknowledged. This essay also substantively benefited from the suggestions of Messrs.<br />
Bob Dohrer, Chris Kradjan, Dorothy McQuilken, and Beth Schneider.<br />
2 The authors are appreciative for advice and guidance from Professor Michael Alles, the comments<br />
of Mr. Shrikant Deshpande, and the research assistance of Ms. Qiao Li.<br />
3 In general the field of assurance incorporates both the traditional audit as well other types of assurance<br />
such as SysTrust, WebTrust or assurance on cybersecurity. In this essay continuous assurance<br />
is also taken as potentially a larger set of topics than providing traditional auditing services but on a<br />
more frequent basis. On the other hand, the terms continuous audit and continuous auditing are used<br />
interchangeably.<br />
3