The Impact of the Sarbanes-Oxley Act on IT Project Management: A Case Study
نویسنده
چکیده
In 2002, the Sarbanes-Oxley Act was passed into law requiring all U.S. based, publicly traded companies to report on the status of their internal controls governing the reporting of financial information. Because of the close relationship between financial reporting and IT, the requirements of the Sarbanes-Oxley (SOX) Act has also greatly impacted IT Governance and the way IT projects are managed. This study is investigating the impact of SOX on IT Project Management within a large corporation. The study is evaluating three areas of impact: 1) The introduction and formalization of internal controls as defined by the COBIT framework, 2) The positive and negative effects on IT project implementation, and 3) The additional costs to an IT project to maintain compliance to the SOX requirement. In addition, the study also considers if the introduction of internal controls has impacted the organization’s development maturity when evaluated against standard maturity models.
منابع مشابه
Shareholder Wealth Effects of MANAGEMENT Regulatory COMPLIANCE
Purpose: This paper addresses whether and how the Sarbanes-Oxley Act of 2002(SOX) affects shareholder wealth (firm value) by focusing on the trade-off between improved corporate governance leading to a lower cost of capital and increased managerial compliance costs of regulations. Design/Methodology: We use an analytical model of solving the management utility maximization function and the cha...
متن کاملDiscussion of A Lobbying Approach to Evaluating the Sarbanes-Oxley Act of 2002
=1204442. DUARTE, J.; K. KONG; L. A. YOUNG; AND S. SIEGEL. “Foreign Listings, U.S. Equity Markets, and the Impact of the Sarbanes-Oxley Act, 2007. Working paper, University of Washington, 2007. ENGEL, E.; R. M. HAYES; AND X. WANG. “The Sarbanes–Oxley Act and Firms’ Going-Private Decisions.” Journal of Accounting & Economics 44 (2007): 116–45.FAMA, E., AND K. FRENCH. “Common Risk Factors in ...
متن کاملSarbanes-Oxley: Achieving Compliance by Starting with ISO 17799
Compliance with the Sarbanes–Oxley Act of 2002 (SOX) has been hampered by the lack of implementation details. This article argues that IT departments that have implemented ten categories of IT controls provided by the International Standards Organization (ISO 17799) will be well on their way toward SOX compliance. A side-by-side comparison of the 124 control components of the ISO Standard and t...
متن کاملDiffusing Management Information for Legal Compliance: The Role of the IS Organization Within the Sarbanes-Oxley Act
Information systems are vital to successful compliance with Section 404 of the Sarbanes Oxley Act. However, there is little published academic literature which reports systematic studies that explain how IS organizations implement 404. Institutional theory was adopted as the lens through which to examine the experiences of 404 implementation in three global organizations. The methodology for th...
متن کامل