{"title":"实现公平竞争:信息技术风险的语言和透明度分析","authors":"Marcy R. Binkley, Jacob Arthur","doi":"10.2308/jeta-2021-037","DOIUrl":null,"url":null,"abstract":"\n We employ both manual and automated content analysis to update an existing dictionary (Boritz, Hayes, and Lim 2013) used to classify types of information technology weakness (ITW). Through analysis of auditors’ reports on internal control filed under Section 404 of the Sarbanes-Oxley Act from 2011 through 2020, we provide a robust tool for textual analytics. Additionally, we apply OpenAI’s large-language model neural networks for classification as a comparison point. We expand identification of ITW categories such as Design, Security, and Outsourcing and identify Governance as a critical new category in auditor reporting. We further expand the dictionary, capturing categories of IT risk found within current IT control frameworks (e.g., COBIT and AICPA TSCs), which we compare with content of auditor reporting. Evidence suggests stakeholders are subject to significant information asymmetry in assessing and reporting IT risk. We provide direction for future IT governance and improve application of advanced textual analysis.","PeriodicalId":506397,"journal":{"name":"Journal of Emerging Technologies in Accounting","volume":"71 s317","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Toward a Level Playing Field: An Analysis of the Language and Transparency of IT Risk\",\"authors\":\"Marcy R. Binkley, Jacob Arthur\",\"doi\":\"10.2308/jeta-2021-037\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"\\n We employ both manual and automated content analysis to update an existing dictionary (Boritz, Hayes, and Lim 2013) used to classify types of information technology weakness (ITW). Through analysis of auditors’ reports on internal control filed under Section 404 of the Sarbanes-Oxley Act from 2011 through 2020, we provide a robust tool for textual analytics. Additionally, we apply OpenAI’s large-language model neural networks for classification as a comparison point. We expand identification of ITW categories such as Design, Security, and Outsourcing and identify Governance as a critical new category in auditor reporting. We further expand the dictionary, capturing categories of IT risk found within current IT control frameworks (e.g., COBIT and AICPA TSCs), which we compare with content of auditor reporting. Evidence suggests stakeholders are subject to significant information asymmetry in assessing and reporting IT risk. We provide direction for future IT governance and improve application of advanced textual analysis.\",\"PeriodicalId\":506397,\"journal\":{\"name\":\"Journal of Emerging Technologies in Accounting\",\"volume\":\"71 s317\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Journal of Emerging Technologies in Accounting\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.2308/jeta-2021-037\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Emerging Technologies in Accounting","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.2308/jeta-2021-037","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
我们采用人工和自动内容分析的方法更新了现有的词典(Boritz、Hayes 和 Lim,2013 年),该词典用于对信息技术薄弱环节(ITW)类型进行分类。通过分析审计师根据《萨班斯-奥克斯利法案》第 404 条从 2011 年到 2020 年提交的内部控制报告,我们为文本分析提供了一个强大的工具。此外,我们还应用 OpenAI 的大型语言模型神经网络进行分类,以此作为比较点。我们扩大了 ITW 类别的识别范围,如设计、安全和外包,并将 "治理 "确定为审计师报告中的一个重要新类别。我们进一步扩展了词典,捕捉了当前 IT 控制框架(如 COBIT 和 AICPA TSCs)中的 IT 风险类别,并将其与审计师报告的内容进行了比较。有证据表明,利益相关者在评估和报告 IT 风险时存在严重的信息不对称。我们为未来的 IT 治理提供了方向,并改进了高级文本分析的应用。
Toward a Level Playing Field: An Analysis of the Language and Transparency of IT Risk
We employ both manual and automated content analysis to update an existing dictionary (Boritz, Hayes, and Lim 2013) used to classify types of information technology weakness (ITW). Through analysis of auditors’ reports on internal control filed under Section 404 of the Sarbanes-Oxley Act from 2011 through 2020, we provide a robust tool for textual analytics. Additionally, we apply OpenAI’s large-language model neural networks for classification as a comparison point. We expand identification of ITW categories such as Design, Security, and Outsourcing and identify Governance as a critical new category in auditor reporting. We further expand the dictionary, capturing categories of IT risk found within current IT control frameworks (e.g., COBIT and AICPA TSCs), which we compare with content of auditor reporting. Evidence suggests stakeholders are subject to significant information asymmetry in assessing and reporting IT risk. We provide direction for future IT governance and improve application of advanced textual analysis.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
