Information Security Compliances and Knowledge Management Capabilities in International Diversification

Information security compliance has become one of the top priorities for firms to remain competitive in this era. It is even more challenging to comply with foreign standards and laws, when a firm aims to internationalize its operations and remain competitive. This paper discusses the role of information security compliances in international diversification phenomena. Specifically, drawing from the organizational information processing theory, this paper proposes that the fit between knowledge management capabilities of a firm and the requirements of information security compliances influences the degree of international diversification of the firm. Unlike much of prior academic literature focusing on American firms, this paper discusses how certain American security compliances possess challenges for foreign firms to diversify their businesses in the US. Both implications and limitations are then discussed

Positive and Negative Findings of the ISO/IEC 17799 Framework

The ISO/IEC 17799 standard is commonly viewed as a necessary element in information security management. However, there is no empirical evidence of the usefulness of the standard in practice. To study this issue, this study analyses the implementation experiences of four organisations that have implemented the ISO/IEC 17799 standard. Through semi-structured interviews, the results of the study suggest that clients’ needs and competitive advantage are the major reasons for implementing the standard. Furthermore, the implementation of the standard has increased the understanding of information security in all personnel groups and the understanding of security has broadened from the technical aspects to corporate security. As downsides of implementing the ISO/IEC 17799 standard, the costs and increased amount of work were mentioned as the worst. In addition, the difficulties in deploying the standard, and the readability of the standard were criticised. The standard was also criticised because it does not directly affect the quality of the end product or service; it only has an indirect effect owing to the improved information security practices

Triple-Entry Accounting and System Integration

Triple Entry Accounting (TEA) provides an opportunity for fundamental change in accounting. TEA is a foundational development of Blockchain technology, which is considered a pillar of the Fourth Industrial Revolution. Nevertheless, in order to augment its impact, TEA should be integrated with other systems. This paper aims to examine the relationship of TEA with system integration (SI) and how it can affect integration. This study reviews the SI literature in the context of accounting, examines how the literature on TEA has evolved over the years, and finally contributes to the analysis of how TEA is related to integration. A key theme is the connection of accounting controls and system integration. The methodology of the four design principles of control in system integration is adopted. Transparency is the main perspective of these principles. It was found that TEA promotes transparency, reduces the risk of fraud, and facilitates system integration

Irresistible Forces and Political Obstacles: Securities Litigation Reform and the Structural Regulation of Corporate Governance

Congress passed the Sarbanes-Oxley Act of 2002 in reaction to the enormous political pressures generated by the wave of corporate financial scandals during 2001-2002. The Act\u27s innovative reforms of corporate governance law were shaped by powerful political constraints on the use of private litigation and tensions over the use of structural regulation to alter the internal governance structures and procedures of publicly traded corporations. The conservative political realignment during 1990s precluded the development or expansion of litigious enforcement mechanisms (i.e., private causes of action) to curb corporate and managerial financial misconduct. Consequently, a number of the Sarbanes-Oxley Act\u27s core provisions took the form of structural regulation intended to function as non-litigious, self-executing mechanisms of regulation. Political constraints on the use of private litigation as an enforcement mechanism entailed a more direct intervention of state power within the corporation and blurred the established boundaries between the public and private spheres. However, the legislative reforms did not alter the core processes of corporate managerial power - the nomination and election of directors to the board. When the SEC attempted to do so, it threatened encroachment on the private sphere and the institutional bases of managerial power and autonomy and produced a backlash by business elites against further reforms and against the underlying logic of Sarbanes-Oxley itself

Reawaken The Risk Governance in The Malaysian Corporate

Risk governance is about balancing the company’s business interests and the interests of stakeholders who might suffer loss or harm from the company’s commercial activities. It is mainly concerned with preventing mistakes or wrongdoings than correcting them. This paper aim is to study the state of risk governance in the Malaysian corporate sector. It specifically studies the way risk governance is regulated and its relation to stakeholders’ interests. This study is based on the existing laws in Malaysia. The laws in the United Kingdom and the United States are studied for a comparative analysis and lessons to be learned. The paper suggests that the role of regulators is crucial to initiate and compel companies to establish and maintain a risk governance system and incorporate it as a corporate culture. It also suggests that co-regulation between the regulatory authorities and the industry is needed to successfully push efforts and participation by companies to establish and maintain an effective risk governance system. The paper is significant as it contributes to the improvement of risk governance in Malaysian businesses in general and in the corporate sector specifically and adds to the body of knowledge on law and governance

Emerging Growth Companies Under the JOBS Act: An Analysis of the “IPO On-Ramp”, 3 J. Marshall Global Mkt. L.J. 63 (2014)

Since 2008, the United States has been faced with a “jobless recovery” which can be attributed in part to a decline in new business creation. To study the link between small companies’ access to markets and creation of jobs, the IPO Task Force was created. The IPO Task Force conducted research and set forth various findings regarding the correlation between emerging growth companies and job creation. The IPO Task Force also attributed a decline in IPO activity to the complex regulatory environment. Accepting these findings, and in response, the JOBS Act passed with surprisingly high bipartisan support. The JOBS Act incorporated certain reduced regulatory barriers including, but not limited to, the special designation of “emerging growth company” status, reduced disclosure and accounting requirements, as well as increased access to reports, and confidential review of draft registration statements. This Article conducts further in-depth analysis as to these standards. In addition, this Article presents varying opinions as to the JOBS Act, as well as research conducted as to its effects. This Article concludes that the research presented thus far yields mixed results, but remains optimistic that the promise of a growing economy, coupled with the passage of time, will determine the effectiveness of the JOBS Act

InfoTech Update, Volume 16, Number 2, March/April 2007

https://egrove.olemiss.edu/aicpa_news/5021/thumbnail.jp