Pall Rikhardsson (), Peter Best, Peter Green and Michael Rosemann
Additional contact information
Pall Rikhardsson: Department of Management Science and Logistics, Aarhus School of Business, Postal: The Aarhus School of Business, Fuglesangs Allé 4, 8210 Aarhus V, Denmark
Peter Best: Faculty of Business, Postal: Queensland University of Technology
Peter Green: The University of Queensland Business School, Postal: University of Queensland
Michael Rosemann: Faculty of Information Technology, Postal: Queensland University of Technology
Abstract: Integration of risk management and management control is emerging as an important area in the wake of the Sarbanes-Oxley Act and with ongoing development of frameworks such as the Enterprise Risk Management (ERM) framework from the Committee of Sponsoring Organizations of the Treadway Commission (COSO). Based on an inductive methodological approach using literature review and interviews with managers engaged in risk management and internal control projects, this paper identifies three main areas that currently have management attention. These are business process risk management, compliance management and internal control development. This paper discusses these areas and identifies a series of research questions regarding these critical issues
Keywords: Risk management; Internal control; Business processes; Compliance; Sarbanes-Oxley Act; ERP systems; COSO; COBIT
19 pages, September 18, 2006
Full text files
M_2006_05.pdf
Questions (including download problems) about the papers in this series should be directed to Helle Vinbaek Stenholt ()
Report other problems with accessing this service to Sune Karlsson ().
RePEc:hhb:aarbma:2006-005This page generated on 2024-09-13 22:19:08.