Professional Documents
Culture Documents
Formation in the
Aftermath of the
20072009 Global
Financial Crisis, Volume I
Structure and Roles
Zabihollah Rezaee
Abstract
The audit committee, as an integral component of corporate governance,
has gained considerable attention in the aftermath of 20072009 global
financial crisis. The audit committees role has evolved from a voluntary
liaison between management and external auditors to the standing committee of the board of directors in overseeing all aspects of corporate governance, financial reporting, internal controls, risk assessment, and audit
activities. This book addresses the determinants of audit committee oversight effectiveness, including their composition, independence, authority,
resources, diligence, and activities. Today, audit committees operate in an
environment of ever-increasing corporate governance reforms established
to protect investors and the public from receiving misleading financial
statements and related audit reports. Audit committees, in complying
with emerging corporate governance reforms, are striving to improve
their oversight effectiveness to discharge their oversight responsibilities.
This book is organized into three separate volumes, and each volume
can be utilized separately or in an integrated form. The first volume addresses the formation of the audit committee, its relevance, sources, structure and roles; the second volume focuses on the oversight functions of
the audit committee; and the third volume presents the emerging issues
of audit committees. The first volume consists of five chapters that examine the relevance and fundamentals of the audit committees as well as the
determinants of audit committee effectiveness. The second volume consists of nine chapters on financial, auditing, internal control, risk management, ethics and compliance, antifraud, and other oversight functions of
the audit committee. The third volume consists of several chapters on the
emerging issues of audit committees pertaining to evaluation, education,
reporting, and accountability as well as audit committees of private companies, governmental entities, and not-for-profit organizations.
The three volumes of this book present the essential and fundamental
aspects and functions of audit committees, with a keen focus on their
working relationship with other corporate governance participants including the board of directors, executives, internal auditors, external auditors, legal counsel, financial analysts, investment bankers, governing
bodies, standard setters, and other stakeholders. Anyone who is involved
vi ABSTRACT
Keywords
Audit Committee, Corporate Governance, Oversight Effectiveness, Financial
Reports, Audit Functions, Risk Assessment, Internal Controls, Business
Ethics, Audit Committee Structure, Composition, Responsibilities and
Accountability
Contents
Preface...................................................................................................ix
Acknowledgments..................................................................................xiii
Introduction.......................................................................................... xv
Chapter 1 Role, Foundation, Regulation, and Structure of the
Audit Committee...............................................................1
Chapter 2 Sources and Drivers of the Audit Committee...................37
Chapter 3 Framework for Audit Committees....................................77
Chapter 4 Audit Committee Resources...........................................113
Chapter 5 Evaluation, Education, and Training of Audit
Committee Members.....................................................147
Index..................................................................................................173
Preface
The wave of financial scandals at the turn of the 21st century and the
20072009 global financial crisis brought corporate governance to center
stage, encouraged massive regulations, rules, standards, and best practices
that redefined the corporate governance structure and established significant corporate governance reforms. The audit committee, as an integral
component of these corporate governance reforms, redefined its own
framework for engaging in and overseeing all aspects of corporate governance, financial reporting, internal controls, and audit activities. This
book presents all applicable laws, regulations, rules, standards, guiding
principles, and best practices affecting the operation, structure, resources,
and functions of audit committees, promoting audit committees to find
unique and innovative ways to improve their oversight effectiveness. The
audit committees role in effectively overseeing the responsible corporate
governance, reliable financial reporting process, effective internal control
structure, and credible audit functions has become a norm for public
companies, a demand from regulators, a mandate of the capital markets,
and a means of protection for investors.
The evolution of audit committees shows that the audit committee
has evolved from a debate over whether or not to voluntarily create audit
committees to mandatory requirements for the establishment of audit
committees, and now, in the light of current corporate governance reforms, on how to effectively integrate the audit committee into corporate
oversight functions as an important element of internal mechanisms for
corporate governance. Today, audit committees operate in an environment of ever-increasing corporate governance reforms established to protect investors and the public from financial scandals. Audit committees,
in complying with emerging corporate governance reforms, are striving to
improve their oversight effectiveness. This book addresses stakeholder expectations of audit committees and the determinants of audit committee
x PREFACE
oversight effectiveness, including their composition, independence, authority, resources, diligence, and activities.
This book is organized into three separate volumes and each volume
can be utilized separately or in an integrated form. The first volume
addresses the formation of the audit committee, its relevance, sources,
structure and roles; the second volume focuses on the oversight functions of the audit committee; and the third volume presents the emerging issues of audit committees. The first volume consists of five chapters
that examine the relevance, fundamentals and the determinants of the
effectiveness of the audit committee. The second volume consists of
nine chapters on financial, auditing, internal control, risk management,
ethics and compliance, antifraud, and other oversight functions of the
audit committee. The third volume consists of several chapters on the
emerging issues of audit committees pertaining to evaluation, education, reporting, and accountability as well as financial and auditing
processes.
The three volumes of this book present the essential and fundamental aspects and functions of audit committees with a keen focus
on their working relationship with other corporate governance participants including the board of directors, executives, internal auditors, external auditors, legal counsel, financial analysts, investment
bankers, governing bodies, standard setters, and other stakeholders.
Anyone who is involved with corporate governance, the financial reporting process, and audit functions should be interested in this book.
Specifically, corporations and their executives, the boards of directors
and audit committees, internal and external auditors, accountants,
governing bodies, users of financial statements (investors, creditors,
pensioners), business schools, and other professionals (attorneys, financial analysts, bankers) will benefit from this book. The three volumes of the book focus on up-to-date corporate governance measures
and best practices in the aftermath of the global financial crisis and
their impacts on audit committee effectiveness. Audit committees
represent shareholders interests and have in-depth knowledge of the
company, its business strategy, its operations, its financial reporting
requirements, and its audit activities. The three volumes should assist
PREFACE
xi
xii PREFACE
regarding questionable accounting or auditing matters in compliance with provisions of both SOX and DoddFrank Act (DOF).
10. Reviewing information technology (IT) risk and emerging technologies, the appropriate use of IT in moving toward Extensible Business
Reporting Language (XBRL)-formatted corporate reporting and
electronic continuous auditing.
11. Reviewing risk management.
12. Overseeing legal/regulatory compliance.
13. Reviewing of integrated financial and internal control reporting
(IFICR) including executive certifications of financial statements
and internal controls and audit reports on financial statements and
internal controls.
14. Communicating with external auditors to improve quality, reliability, and transparency of financial reports. This two-way robust communication is intended to improve audit quality, strengthen auditor
independence, promote effective corporate governance, and protect
investor interests.
15. Overseeing whistle-blowing policies and practices including ethical
compliance.
16. Encouraging their organizations to move toward integrated and
sustainability reporting reflecting both financial economic sustainability performance and non-financial environmental, ethical, social,
and governance sustainability performance.
Sincerely,
Zabihollah Rezaee
March 21, 2016
Acknowledgments
I acknowledge the Securities and Exchange Commission, the Public Company Accounting Oversight Board, the American Institute of Certified
Public Accountants, and Big Four Accounting Firms for permission to
quote and reference their professional standards and other publications.
The encouragement and support of my colleagues at the University
of Memphis are also acknowledged. Specifically, two of my graduate assistants, Mr. Rob Palmer and Mr. Josh McDonald provided invaluable
assistance. I thank the members of the Business Expert Press team and
S4Carlisle Publishing Services for their hard work and dedication in editing
the book, including Stewart Mattson, Scott Isenberg, Scott Showalter and
Jan Williams, Mark Bettner, Michael Coyne, and Premkumar Narayanan.
My sincere thanks are due to my family, my wife Soheila, and my
children Rose and Nick. Without their love, enthusiasm, and support,
this book would not have come to fruition when it did.
Zabihollah Rezaee
May 12, 2016
Introduction
The 20072009 global financial crises have eroded the public trust and
investor confidence in corporate governance and the financial reporting
process. Policymakers, regulators, and the business community have responded by taking proper initiatives to prevent further occurrences of
financial crises. Restoring the public confidence requires a significant coordinated effort, regulatory measures, and best practices by policymakers,
regulators, business organizations, and the accounting profession. One
of the key provisions of these regulatory reforms, which seeks to restore
public confidence, is that a properly constituted and functioning audit
committee can improve the quality of financial reporting by acting as an
effective arbitrator in management and auditor disputes. Thus, this volume addresses the audit committee attributes as an integral component
of corporate governance to improve quality, reliability, and transparency
of financial reports and credibility and effectiveness of the related audit
functions. The effectiveness of the audit committee depends on the quality, timeliness, and reliability of information it received from management, internal auditors, legal counsel, and external auditors regarding
financial, internal control, risk, legal, and auditing issues.
The first volume presents the essential and fundamental aspects and
functions of audit committees with a keen focus on their working relationship with other corporate governance participants including the
board of directors, executives, internal auditors, external auditors, legal
counsel, financial analysts, investment bankers, governing bodies, standard setters, and other stakeholders. This volume presents the roles, responsibilities, structure, composition, qualification, authority, resources,
and other attributes of the audit committee in accordance with the most
recent regulatory requirements and best practices. Anyone who is involved with corporate governance, the financial reporting process, and
audit functions should be interested in this volume. Specifically, corporations and their executives, the boards of directors and audit committees,
xvi INTRODUCTION
CHAPTER 1
Role, Foundation,
Regulation, and Structure
of the Audit Committee
Executive Summary
This chapter provides an introduction to the relevance and status of
corporate governance and the audit committee in the financial markets.
The audit committee as an integral component of corporate governance
assumes oversight responsibilities on all aspects of corporate governance
from financial reporting, to internal controls and audit activities. One
of the key provisions of the SarbanesOxley Act (SOX) of 2002, which
seeks to restore investor confidence in public financial information, is
that a properly constituted and effective functioning audit committee can
improve the quality of financial reporting by acting as an effective arbitrator in management and auditor disputes. Audit committees operate in an
environment of ever-increasing corporate governance reforms established
to protect investors and the public from financial scandals. Audit committees, in complying with emerging corporate governance reforms, are
striving to improve their oversight effectiveness. In the aftermath of SOX,
every public company should have an audit committee composed of at
least three independent directors with adequate financial expertise. Audit
committee structures and practices should be implemented in protecting
shareholders from receiving misleading and misstated financial information and in enhancing the companys accountability to all stakeholders.
This chapter examines the relevance and determinants of audit committee oversight effectiveness, including their composition, independence,
authority, resources, diligence, and activities.
Introduction
The wave of financial scandals at the turn of the 21st century and the
20072009 global financial crisis brought corporate governance to
center stage and encouraged massive regulations, rules, standards, and
best practices that redefined the corporate governance structure. In the
aftermath of the global financial crisis, public companies are closely
scrutinized by regulators to improve their corporate governance in preventing further occurrences of financial scandals. The boards of directors of public companies are faced with challenges of governance, risk
assessment, internal control, and financial reporting as well as compliance with rules, regulations, and standards. These ongoing challenges
should be effectively addressed by the board of directors and its various board committees including the audit committee.1 Public companies are also facing more challenges including the ever-increasing threat
of cyberattack, globalization, and technological advances. In light of
ever-increasing corporate governance reforms, the audit committee is
redefining its structure and role of engaging in overseeing all aspects of
corporate governance from financial reporting to internal controls, risk
assessment, and audit activities.2
This chapter presents all applicable laws, regulations, rules, standards,
guiding principles, and best practices affecting the operation, structure,
resources, and functions of audit committees. The audit committees
role in effectively overseeing the effectiveness of corporate governance,
reliability of financial reporting process, effectiveness of internal controls, and proper assessment of risks and credibility of audit functions
has become a norm and best practices for public companies. Investors
demand, regulators require, and business organizations ensure vigilant
audit committee in protecting investor interests and enhancing reliability of their financial reports.
In the past several decades, the audit committee has evolved from
a decision to whether or not to voluntarily create audit committees to
act as a liaison between external auditors and management to preserve
auditor independence to the mandatory requirements for the establishment of audit committees, and their integration into corporate oversight functions. This chapter examines the relevance and importance
Exhibit 1.1
Ways audit committees can rebuild the
public trust and investor confidence in
public financial information
1. Assess financial
reporting quality
5. Consult with
an independent
accounting and
auditing advisor
parties, and it identifies and presents all aspects of events and transactions
that could alter the users conclusions. Third, neutrality determines an
aspect of quality. Neutrality is measured in terms of objectivity as information should be free from bias. Finally, when financial information is
prepared and presented in a manner that allows informed comparison to
other periods of time and to other companies, it is considered as being
comparable, which is more relevant for decision making.
Next, audit committees should evaluate processes for reviewing
financial information. Regular evaluations of the companys and boards
processes not only make the audit committee aware of any weak reporting,
but also inform the audit committee regarding the effectiveness of internal controls and quality financial reporting. This evaluation should suggest
ways that the company can improve processes so that current or anticipated
problems can be avoided. Third, conducting a group comparison among
industry peers and among peer companies can help rebuild the public trust.
Audit committees can greatly benefit from insights regarding matters such
as relationships between financial statements that differ significantly from
those of the companys peers best practices. Audit committees should be
able to identify key issues such as overly aggressive accounting principles or
distorted comparisons with peer companies, and question the underlying
management decisions that may have contributed to the situation.
Additionally, to enhance the audit committees understanding of
appropriate reporting policies and best practices in the related industry,
it is important to obtain tailored, industry-specific training for all audit
committee members. Training enables audit committee members to develop the self-assurance needed to challenge management and outside
auditor decisions on accounting and reporting choices they have made.
This also provides additional assurance to outside investors. Finally, audit
committees can rebuild public trust by consulting with an independent
accounting and auditing advisor. Under SOX, as explained in the following section, audit committees have the right to obtain both legal and
financial reporting advisors. An accounting advisor represents significant
value in the appearance and substance of public trust and boosts confidence in the integrity of financial reporting systems and processes. Audit
committees are advised to seek assistance in: (1) their financial literacy
and expertise requirements under the rules of the exchanges and SOX;
(2)the content of the audit committee report in the annual proxy statement; and (3)thecommittees discussion with the independent auditors regarding the auditors judgments on the qualitative characteristics of
financial reporting and accounting information.
Exhibit 1.2
Summary of some provisions of
the Sarbanes-Oxley Act of 2002
1. Establishment of Public Company Accounting Oversight Board
(PCAOB). The PCAOB is composed of five members where
only two members are allowed to have experience as a certified
public accountant and the chairperson must not have practiced
accounting during the 5 years preceding the appointment as
a chair. The SEC is given power to appoint the PCAOB after
consultation with the chairman of the Board of Governors of
the Federal Reserve System and the Secretary of the Treasury.
The PCAOB is empowered to investigate and discipline public
company auditors. The board is also authorized to set auditing,
quality control, ethics, independence, and other standards
relating to the preparation of audit reports. The PCAOB is an
independent body that operates as a nonprofit corporation under
the oversight function of the SEC. Operation of the PCAOB
changes governance of the auditing profession from traditional
self-regulatory regime to regulatory environment under the
oversight function of the SEC.
(Continued)
10
Exhibit 1.3
The audit committee Pre- and
Post-SarbanesOxley Act
Pre-SarbanesOxley Act Post-SarbanesOxley Act
Voluntary audit committees
Personal and economic
ties to management and
corporation
Liaison between management
and independent auditors
Limited knowledge of
financial reporting
Infrequent and short
meetings
Lack of proper authority and
resources
Limited oversight functions
Lack of proper accountability
11
12
13
Exhibit 1.4
Summary of provisions of the SarbanesOxley
Act and the DoddFrank Act
Provisions
DoddFrank Act
SarbanesOxley Act
Event triggered
the passage
Purpose
Proposed
implementation
rules
Provisions
Affected
organizations
and individuals
Timeframe for
implementation
Implemented.
New entities
14
15
Exhibit 1.5
Audit committee oversight effectiveness
Provisions
I. Composition
Required by the
Sarbanes-Oxley Act
of 2002 and SEC
proposed rules2003
(Continued )
16
II. Functions
III.Handling
complaints
1. Enhance the
The audit committee does the
independence of audit
following:
functions.
1. Approves all audit and non-audit
2. Hire, evaluate, and fire
services.
external auditors.
2. Hires, fires, and retains
3. Responsible for
independent auditors.
the appointment,
3. Reviews and approves: (1)
compensation, retention,
budget for the internal audit
and oversight of the work
function; (2)the independent
of auditors
auditors report; and (3)
4. Approve all audit
external and internal auditors
engagement fees and
audit plan, procedures, scope,
terms and significant
and results.
non-audit engagements of 4. Arranges meetings and discusses
the independent auditor.
annual and quarterly financial
5. Review of financial
reports with management and
statements.
independent auditors.
6. Assessment of risks and
5. Receives required information
vulnerabilities.
regarding auditor independence.
7. Oversight of external and 6. Has private meetings with
internal audits.
external and internal auditors.
7. Provides external and internal
auditors with unrestricted access
to the committee.
8. Has unrestricted access to all
company records.
9. Reviews management: (1)
strategic plans and business risk;
(2) assessment of the adequacy
and effectiveness of internal
controls; and (3)certification
of the accuracy, completeness,
and fair presentation of financial
statements in conformity with
GAAP.
10. Reviews corporate governance
principles and monitors
compliance with these principles
Establish procedures for the The audit committee should
following:
establish procedures for the receipt,
1. The receipt, retention,
retention, and treatment of
and treatment of
complaints received.
complaints received
by the company
regarding accounting,
internal controls, or
auditingmatters.
17
2. The confidential,
anonymous submission
by employees of concerns
regarding questionable
accounting or auditing
matters.
IV. Advisors
V. Funding
VI. Knowledge
(Continued )
18
VII.
Certification
VIII. Auditor
Rotation
IX. Evaluation
19
X. Ethics
Oversight
XI. Structure
audit committee as required by SOX and the SEC-related implementation rules with those of suggested best practices (benchmarks). The most
noticeable differences are: (1) SOX and SEC rules require a minimum of
three independent members of the audit committees, whereas the benchmark suggests five independent members; (2) SOX requires that at least
one member of the audit committee be designated as a financial expert, while the benchmark suggests all members of the audit committee
20
be financial experts; (3) SOX requires rotation of the lead audit partner
once every 5 years, whereas the benchmark suggests rotation of audit firm
when there is a combination of circumstances that could impair the audit
firms independence from management.
Best practices of the audit committee suggested in Exhibit 1.5 indicate
that the audit committee : (1) be composed of five members that are independent and free from any consulting, advisory, or any other compensatory
fee other than as a member of the board; (2) provide a 5-year rotation of
audit committee members to evaluate independence from management;
(3)appropriately fund the payment of compensation of external auditors;
(4) establish procedures for treatment of complaints and confidentialityw
including whistle-blowing policies and procedures; (5) have knowledge and
experience in financial reporting and disclose that at least one member of
its audit committee is a financial expert; and (6) adopt the required written audit committee charter that describes structure, duties, responsibilities,
functions, and composition of the committee.
In compliance with regulatory reforms and best practices, many
public companies disclose relevant information regarding their audit
committees. Corporate disclosures and the right balance between disclosure efficiency and disclosure overload will continue to be a big challenge
for public companies and their audit committees as the SEC currently
addresses corporate disclosure and companies try to find the best way to
communicate with their shareholders. Corporate disclosure effectiveness
has been and continues to be an area of intensive focus by the Securities
and Exchange Commission (SEC) as evidenced in its current initiatives
to identify gaps in information relevant to investors and to facilitate the
disclosure of useful information to investors (SEC, 2015).16
21
must be selected from the companys board of directors and they must be
independent.17 Independent directors serving on the audit committee are
barred from: (1) accepting any direct or indirect (e.g.,spouses, children)
compensation (consulting, advisory) except for their service on the board
and (2) any affiliation with the company or its subsidiaries except for board
and board committee participation.18 The board of directors (not the CEO)
should appoint the chair of the audit committee and other independent
members of the audit committee. The audit committee should be given the
authority to appoint its own financial advisors and service providers. Some
of meetings of the audit committee should be held with only the committee
members and any deliberations be presented to and approved by the entire
board of directors. The process by which audit committee members and the
chair are selected should be properly disclosed to shareholders.
The audit committee oversight effectiveness depends on the culture,
attitude, philosophy, and practices of the entire board of directors in general and the audit committee in particular. The audit committees financial
reporting oversight function involves monitoring the reliability, integrity,
quality, and transparency of the financial reporting process without assuming managerial functions and decisions relevant to the preparation of
financial statements.19 To effectively fulfill their oversight responsibilities,
audit committee members must be professionally qualified, operationally
knowledgeable, functionally independent, and financially literate.20 The
audit committee should meet regularly and, as needed, with the companys board of directors and officers including the CEO, the chief financial officer (CFO), treasurer, controller, and other corporate gatekeepers
including the director of the internal audit function, external auditors,
and general counsel. The committee should meet with all corporate gatekeepers, directors, and officers both individually and collectively to review
and assess the quality, integrity, transparency, and reliability of financial
reports, effectiveness of internal controls, and the credibility of audit
functions.21
The KPMG 2015 Audit Committee Guide discusses the required
and suggested committee composition, on-boarding processes, and
the role of the chair. The NYSE and NASDAQ listing rules require a
minimum of three members, though most audit committees have on
average three to five independent members. The NYSE lists further requirements for people serving on multiple audit committees to ensure
22
23
with this responsibility is the tacit acknowledgment that the audit committee is best-positioned to determine whether the auditor is providing a high
quality audit.25
24
process to oversee IT risk, and they rank the quality of the information
they receive about IT risk the lowest among all categories.27 They also
stated that they would like to communicate with the chief information
officer (CIO) concerning the rapid growth in IT.
Second, audit committees should communicate with the chief risk
officer (CRO) about the companies risk management. From the 2011
Audit Committee Member Survey, only 34 percent were satisfied on the
views about the companys risk environment and other related controls.
The audit committee should oversee assessment and management of both
internal risks such as strategic, governance, and external risks including
bribery, fraud, cybersecurity, and the supply chain.
Innovation and growth plans are the third challenges for audit
committees. Audit committees look to see if companies have effectively
identified risks to their growth plans and implemented controls to monitor them. Along with building a strategy to grow and innovate, audit
committees continue to pay considerable consideration to the compliance, controls, and risk and reporting issues in a company. Finally, current legal/regulatory mandates such as the DoddFrank whistle-blowing
rules will continue to consume time and attention from audit committee
members to ensure compliance and assurance of financial statements.
25
auditors. The audit committee should disclose to shareholders, at least annually, sufficient information to enable them to assess whether the audit
committee is carrying out its financial, auditing, internal control, and
risk oversight responsibilities effectively. The audit committee oversight
of risk management is gaining considerable attention in the aftermath of
the 20072009 global financial crisis.
It is important to keep in mind that audit committees are not
seen as a burden for the company, but instead as opportunities to
maximize profits and reduce risks. The audit committee should have
a thorough understanding of the business and the financial accounting policies and procedures.28 It is important for committee members
to be updated on company accounting policy changes. The committee should be given adequate resources and authority to effectively
discharge its oversight responsibilities. To become effective in audit
committee responsibilities, members must be able to monitor the financial reporting process, the effectiveness of internal audit, and the
statutory audit.29
It is the managements duty to prepare a complete and accurate fi
nancial
statement in accordance with financial reporting standards, and audit committees should provide assurance for the financial reporting process. Accounting policies, judgments, and estimates are called for in the statements;
therefore, it is important for committee members to monitor the reliability
and relevance to be confident with the changes made. Monitoring the effectiveness of internal control and risk management systems help maximize
opportunities and minimize potential losses. Internal controls are one of the
principal means by which risk is managed; therefore, it is critical for audit
committee members to evaluate these risks. Receiving reports from management on the systems helps establish the degree to which management has
assumed ownership for risk and control, whether the controls are fit for purpose, identifiable key business risks, rigor, and comprehensive review process.
In addition, establishing and maintaining an effective internal audit
function aids in ensuring that the internal audit function has adequate resources and access to information to enable it to fulfill its mandate and is
equipped to perform in accordance with appropriate professional standards
for internal auditors. Lastly, reviewing the audit plan should determine if an
appropriate audit plan is in place. To appropriately analyze the audit plan,
26
the board members should understand where the statutory auditor performs substantive testing, whether divisions receive adequate c overage, and
whether audit firms are involved in auditing specific geographic locations.
The audit committee as a standing committee of the board of
directors is accountable to the board, and as a representative of shareholders is accountable to shareholders. Accountability of the audit
committee encompasses the requirements for having a written charter
that provides for an annual review and evaluation of the entire audit
committee and each of its members and review of its membership and
relationships with the companys board, management, internal auditor, and independent auditor. Formal review and evaluation of an audit
committees performance can be provided through self-evaluation and
assessment by the board, senior executives (CEO, CFO), the internal
auditor, the independent auditor, e xternal evaluation service providers,
or a combination thereof.
The audit committee as a standing committee of the companys board
of directors is an important component of the corporate governance
structure designed to protect shareholder interests. The audit committee is viewed by many as representative of shareholders, on behalf of the
board of directors, and the ultimate guardian of stakeholder interests,
investor protection, and corporate accountability.30 Arthur Levitts call
several years ago for bold action on audit committee as guardians of the
public interest is now more relevant and appealing than ever before in
light of new corporate governance reforms.31 Audit committee effectiveness is a continuous process in light of increasing complexity of business and risk, and the need for the audit committee engagement in the
companys strategy, its risk, and sophistication of the financial, internal
control, and audit processes.
Effective Oversight Dos
The primary oversight effectiveness of the audit committee depends on
the audit committee engagements with other directors, executives (CEOs,
CFOs), legal counsel, and investors in strategic planning, business and financial risk assessment, financial reporting, and audit activities outside of boardroom meetings. Other factors such as the audit committee composition,
27
28
29
and data security), clarify the audit committee and other committees,
and strengthen the boards understanding of IT through education and
bringing IT specialists on board.
Focus on Asymmetric Information Risk and Seek Out
Dissenting Views
Audit committee members should make time to visit company facilities and
attend employee functions to see what internal auditors, third parties, business unit leaders, and external auditors say about their company. Proper audit
committee orientation and understanding the corporate culture and business
environment and processes assist the audit committee to determine challenges and opportunities relevant to the company and review consistency and
risk recognition. Over-reliance on senior management promotes a culture of
candor and constructive skepticism, raises red flags, and welcomes challenges.
Consider the Impact of the Regulatory Environment
on Compliance Programs and Business Plans
In the ever-increasing regulatory environment, compliance has become
an important oversight function of the audit committee. The audit committee members promote attention on conflict minerals and compensation clawbacks. They must heavily focus on other compliance challenges
posed by the Foreign Corrupt Practices Act, the UK Bribery Act, the
SECs whistle-blower bounty program, and the DoddFrank provisions.
The right tone at the top and throughout the organization is critical in ensuring compliance with applicable laws, rules, regulations, and standards.
Understand the Companys Significant Tax Risks
and How they are Being Managed and Modeled
Significant compliance and financial risks are affected by prospects for
business tax reform, ongoing assessment of uncertain tax positions, increased state, federal, and global enforcement activities, and continued
complexity of operating globally in different tax regimes. For audit committee members to stay abreast on tax risks, they must establish a clear
30
31
Conclusion
The 20072009 global financial crisis was caused by many factors
including ineffective and inefficient regulations, the subprime mortgage
debacles, lack of transparency among financial institutions, highly leveraged banks, greed and incompetence of executives, and global imbalances of rising asset prices. The effects of the financial crisis have been
far reaching, not only in the United States, but also in Europe and Asia.
Overriding effects include global economic meltdown, increased unemployment rates, insufficient economic growth, and significant numbers
of home foreclosures, government deficits, and substantial business and
bank failures. The 20072009 global financial crisis also underscores the
importance of the role that global regulations can play in ensuring stability of international financial markets and thus protection of consumers
and investors.
The audit committee in the past two decades has made a significant
progress from being voluntarily formed as a liaison between management
and external auditors to preserve audit independence to now as an effective oversight function of the financial reporting and audit process,
internal control, risk management, and the compliance and ethics. Many
events and regulations have underscored the importance and relevance of
the audit committee including financial scandals of Enron, Global Crossing, WorldCom, among others at the turn of the 21st century, the passage
of SOX in 2002, the 20072009 global financial crisis, the DoddFrank
Act of 2010, and the most recent cybersecurity attacks. These events and
regulations set higher standards for the audit committee in overseeing
32
Action Items
1. Revise your audit committee charter to ensure compliance with all
applicable laws, regulations, rules, standards, and best practices.
2. Understand and communicate to all corporate governance participants the important role that the audit committee plays in overseeing
the reliability and integrity and quality of financial and nonfinancial
corporate reports.
3. Ensure that your audit committee is in charge of hiring, firing, compensating, and overseeing the work of external auditors.
4. Make your audit committee an integrated component of the corporate governance structure.
5. Ensure your audit committee has the required qualification to fulfill
its oversight effectiveness.
6. Ensure your audit committee is independence as defined by the
SEC, has technical and financial competency, possesses communication skills, and has willingness to interact with other board
members, executives, legal counsel, internal and external auditors
and investors, and has the authority and resources to hire advisors.
7. Form your audit committee in compliance with all applicable
laws, rules (SOX, DOF), regulations (SEC), and standards (NYSE,
NASDAQ).
8. Ensure your audit committee oversees how auditors are appointed,
what kind of work they are allowed to do, and their fees.
33
9. Make sure your audit committee discusses with the internal auditors
and the independent registered public accountants the overall scope
and plans for their respective audits, including the adequacy of staffing and budget or compensation.
10. The audit committee should review and discuss the quarterly financial statements, including Managements Discussion and Analysis of
Financial Condition and Results of Operations, with management
and the independent registered public accountants prior to the filing
of the Companys wQuarterly Report on Form 10-Q.
11. The audit committee should conduct a review of integrated financial
and internal control reporting (IFICR) including executive certifications of financial statements and internal controls and audit reports
on financial statements and internal controls.
12. The audit committee should interact and communicate with other
corporate gatekeepers including other board members, management, external auditors, internal auditors, legal counsel, and others
in charge of governance.
Endnotes
1. The term audit committee(s) used in these three volumes is referred
to those charged with oversight of financial reporting, internal controls, and the audit process.
2. Much of this discussion regarding the formation, composition,
structures, fundamentals, and functions of the audit committee
throughout this and other chapters has been adapted from Rezaee,
Z. 2006. Audit Committee Oversight Effectiveness Post-Sarbanes-Oxley
Act. Brooklyn, NY: Tax Management Inc. (BNA Publications).
3. Rezaee, Z. 2011. Financial services firms: Valuations, mergers and acquisitions (3rd ed.). New York, NY: John Wiley and Sons.
4. Ibid.
5. Ellwood, S., & Lacalle, J. 2013. An Oversight Body for Local Public
Audit: Protector of the Public purs or an Unnecessary expense? Available at: https://research.mbs.ac.uk/accounting-finance/Portals/0/docs/
An%20oversight%20body%20for%20local%20public%20audit.pdf
34
6. Epstein, B., & Vullmahn, E. 2010. Russel Novak & Co. LLP. 5 Way Audit
Committees Can Rebuild Public Trust. Available at: www.law360.com/
articles/178080/5-ways-audit-committees-can-rebuild-public-trust
7. Ibid.
8. Financial Accounting Standards Board (FASB). 2015. Statement
of Financial Accounting Concepts No. 2 Qualitative Characteristics of Accounting Information. Available at: https://asc.fasb.org/
imageRoot/23/73531923.pdf
9. Sarbanes-Oxley Act (SOX) 2002, Pub. L. 107-204, enacted July 30,
2002, adding 15 U.S.C. 7201 et seq.
10. Ibid.
11. Dodd-Frank Wall Street Reform and Consumer Protection Act of
2010. 2010. (pp. 111203). Pub. L.
12. For a more in-depth discussion of provisions of Sarbanes-Oxley Act
addressing corporate governance, the financial reporting process,
and audit functions, see: Rezaee, Z. 2004. Corporate Governance
Role in Financial Reporting. Research in Accounting Regulation
17:107149.
13. Blue Ribbon Committee on Improving the Effectiveness of Corporate Audit Committees (BRC). 1999. Report and Recommendations
of Blue Ribbon Committee on Improving the Effectiveness of Corporate
Audit Committees. New York, NY and Washington, DC: NYSE and
NASDAQ.
14. TeamMate and Wolters Kluwer. 2015. Audit Technology Insights:
Strengthen Audit Committee Value: A 10-Step Approach. Available
at: https://na.theiia.org/standards-guidance/Public%20Documents/
Strengthen-Audit-Committee-Value-a-10-step-Approach.pdf
15. Deloitte. 2014. Audit Committee Brief, November/December. Available at: www2.deloitte.com/content/dam/Deloitte/us/Documents/
audit/us_aers_ACB_2014%20nov%20dec.pdf
16. The Securities and Exchange Commission (SEC) recently has taken
initiatives to modernize public company disclosure (SEC, 2013).
On September 25, 2015, the SEC published its first request for
comment from the disclosure effectiveness initiative (SEC, 2015).
Securities and Exchange Commission (SEC). 2015. Request for
comment on the effectiveness of financial disclosures about entities
other than the registrant. Release No. 33-9929; 34-75985; IC-31849;
35
36
30. Rezaee, Z. 2002. Financial Statement Fraud: Prevention and Detection. New York, NY: John Wiley & Sons.
31. Levitt, A. 1998. Deloitte. Audit Committee Brief. 2012. Available at: www
.deloitte.com/assets/Dcom-UnitedStates/Local%20Assets/Documents/
us_aers_ac_brief_05022012.pdf
32. KPMG. 2011. Ten To-Dos for Audit Committees in 2012. Audit
Committee Institute. Available at: www.kpmg.com/Global/en/
IssuesAndInsights/ArticlesPublications/Lists/Expired/aci-10-todos-2012.pdf
Index
Accountability, 38
of audit committee, 26
reforms, 119
Accounting advisor, 6
Accounting Series Release (ASR)
No. 123, 39
Accounting Series Release (ASR)
No. 19, 39
Administrative process, of audit
committee, 162
Agency theory, 102
Allen, William, 118
American Institute of Certified Public
Accountants (AICPA), 39,
5457
Audit Committee Toolkit, 55
communication, guidance for,
5556
Audit committee, 13
advisors, 114
attributes of, 38, 8190
authoritative guidelines and best
practices of, 4071
authority, 114115
best practices, 6771
with board of directors, 100101
charter. See Charter, audit
committee
compensation, 115116
composition, 100101,
120122, 124
determinants of, 9495, 9699
effectiveness of, 26, 9395
evolution of, 3940
with external auditors, 106109
financial experts, 135138
functions of, 2431
fundamentals of, 2023
funding, 115116
guidelines and aspirations, 134135
independence, 120, 128134
with internal auditors, 103106
174 INDEX
Corporate disclosure, 20
Corporate governance, 2, 20, 46, 56,
77, 81, 102, 103, 119, 135
Corporate library, 135
Cyber security, 28, 4950, 9192, 99
Cybercriminals, types of, 50
Decision-making process, 118
Deliberative process, of audit
committee, 162
Deloitte Audit Committee Brief,
1415
DoddFrank Act (DOF) (2010), 30,
147, 160
provisions for audit committees,
1112
and SarbanesOxley Act, provisions
of, 13
DoddFrank whistle-blowing
rules, 122
Duty of care, 118119
Duty of loyalty, 117118
Earnings management, 120121
Engagement quality reviewer, 6667
External auditor, 98, 106109, 129
EYs Audit Committee Member
Toolkit, 170
Federal Deposit Insurance Company
Improvement Act (FDICIA),
39, 4647
Federal Deposit Insurance Corporation
(FDIC), 4647, 157
Financial expert, 122123, 135138
definition of, 22, 51
education and experience of,
5152
Financial markets, 3
Financial reporting, 4, 20, 21, 22,
98, 102
Financial statements, 25
audit committees review of,
161162
Five-point litmus test, 106
Foreign Corrupt Practices Act
(FCPA), 29, 69
Form 10-K, 169
INDEX
175
Macroeconomic factors, 4
Microeconomic factors, 4
National Association of Corporate
directors (NACD), 148
National Association of Securities
Dealers (NASD), 44
National Association of Securities
Dealers Automated
Quotation Market
(NASDAQ), 147, 148, 153
154, 169
audit committee independence
requirements, 131
and NYSE, 5960
stock exchange, 2122
National Commission on Fraudulent
Financial Reporting. See
Treadway Commission
Report
National stock exchanges, 7, 12, 57,
115, 123
New York Stock Exchange (NYSE),
39, 44, 49, 90, 147, 148,
153154
audit committee independence
requirements, 130131
Market LLC (NYSE MKT LLC), 58
and NASDAQ, 5960
stock exchange, 2122
Proxy statements, 49, 52, 138139
Public Company Accounting
Oversight Board (PCAOB),
12, 30, 55, 6167, 70, 99
audit inspection, 62
deficiencies, types of, 6667
in firms, 66
process, 6465
reports, public portion of, 63
results, discussions about, 64
quality control criticisms,
6364
Public financial information, 3
investor confidence and public trust
in, 35
process evaluation for reviewing, 6
PwC, 99, 128
176 INDEX
a one-time purchase,
that is owned forever,
allows for simultaneous readers,
has no restrictions on printing, and
can be downloaded as PDFs from within the library community.
Our digital library collections are a great solution to beat the rising cost of textbooks. E-books can
be loaded into their course management systems or onto students e-book readers.
The Business Expert Press digital libraries are very affordable, with no obligation to buy in future years.
For more information, please visit www.businessexpertpress.com/librarians. To set up a trial in the United
States, please contact sales@businessexpertpress.com.