SEC passes new AS5 Sox auditing rules
Changes cut costs and increase accuracy, says Cox
The Securities and Exchange Commission (SEC) has voted unanimously in favour of the new Sarbanes Oxley (Sox) auditing standard proposed earlier in the year by the Public Company Accounting Oversight Board (PCAOB).
Although the vote was little more than a formality, the Commission’s acceptance of Auditing Standard No. 5 (AS5) is the last step in implementing a long-sought-for shift to less prescriptive auditing rules in the annual Sox compliance process.
AS5 was developed in tandem with the SEC’s own new management guidance for Sox, which seeks to make Section 404 audits and management evaluations more risk-based and scalable to a firm’s size and complexity.
The new procedures are intended to increase the accuracy of financial reporting while reducing unnecessary costs, especially for smaller public companies.
"This standard and the Commission's interpretive guidance for management represent the culmination of two years' work by the Commission and the PCAOB to make Section 404 more effective and efficient. I want to thank everyone for their work in addressing the concerns created by the unduly expensive and inefficient Auditing Standard No. 2," said SEC chairman Chris Cox.
Among the detail of the AS5, the mandatory requirements of the previous auditing standard have been reduced, allowing the auditor to focus on performing tests in those areas where, in the auditor's judgement, they’re actually necessary.
In a concession for audits of smaller and less complex companies, the auditor can reduce the amount of internal control testing and consider alternative controls. AS5 also directs auditors to those areas that present the highest risk and allows them to use knowledge accumulated in previous years' audits to reduce testing.
Both the SEC and PCAOB were lauded for their work by representative Barney Frank, chairman of the House Committee on Financial Services, although it seems unlikely the new rules will draw a line under the protests that have characterised the first five years of the Act.
Earlier this week, Nasdaq issued a statement calling for regulators to create an ombudsman to give firms recourse to complain if they feel they are been audited in an unnecessarily costly and time-consuming fashion. The stock exchange also claimed AS5 represented nothing more than “incremental progress”, in alleviating the compliance burden.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Operational risk
Integrated GRC solutions 2024: market update and vendor landscape
In the face of persistent digitisation challenges and the attendant transformation in business practices, many firms have been struggling to maintain governance and business continuity
Vendor spotlight: Dixtior AML transaction monitoring solutions
The Chartis Research report, AML transaction monitoring solutions, considers how, by working together, financial institutions, vendors and regulators can create more effective anti-money laundering (AML) systems.
Financial crime and compliance50 2024
The detailed analysis for the Financial crime and compliance50 considers firms’ technological advances and strategic direction to provide a complete view of how market leaders are driving transformation in this sector
Automating regulatory compliance and reporting
Flaws in the regulation of the banking sector have been addressed initially by Basel III, implemented last year. Financial institutions can comply with capital and liquidity requirements in a natively integrated yet modular environment by utilising…
Investment banks: the future of risk control
This Risk.net survey report explores the current state of risk controls in investment banks, the challenges of effective engagement across the three lines of defence, and the opportunity to develop a more dynamic approach to first-line risk control
Op risk outlook 2022: the legal perspective
Christoph Kurth, partner of the global financial institutions leadership team at Baker McKenzie, discusses the key themes emerging from Risk.net’s Top 10 op risks 2022 survey and how financial firms can better manage and mitigate the impact of…
Emerging trends in op risk
Karen Man, partner and member of the global financial institutions leadership team at Baker McKenzie, discusses emerging op risks in the wake of the Covid‑19 pandemic, a rise in cyber attacks, concerns around conduct and culture, and the complexities of…
Moving targets: the new rules of conduct risk
How are capital markets firms adapting their approaches to monitoring and managing conduct risk following the Covid‑19 pandemic? In a Risk.net webinar in association with NICE Actimize, the panel discusses changing regulatory requirements, the essentials…