SEC: 404 budgets filled with waste

By Linda Tucci, Senior News Writer 03 Jun 2005 | SearchCIO.com

Digg This!     StumbleUpon     Del.icio.us

One year into the implementation of Section 404 of the Sarbanes-Oxley Act, a statement issued this month by the Securities and Exchange Commission acknowledges what companies have been complaining about for months: The cost of compliance is exorbitant, the interpretation of the rule is far too broad and the prime beneficiaries are accounting firms, the very industry whose slipshod practices were in part responsible for the legislation.

"I think the SEC said what we all knew. The rule, as it is being interpreted by the accounting industry, is far too complicated and far too expensive," said Dave Ellard, senior vice president of corporate development for GlassHouse Technologies, a storage consulting and services firm based in Framingham, Mass.

Section 404, whose intent is to prevent fraud, requires that public companies assess their internal controls to ensure their financial reporting is accurate and reliable. In response to the rising tide of complaints, the SEC and the Public Company Accounting Oversight Board (PCAOB) last month convened a roundtable of domestic and foreign business leaders.

The SEC determined that some of 404 costs "may have been unnecessary, due to excessive, duplicative or misfocused efforts." Essentially, the SEC said a cookie-cutter approach to rule 404 was wasting dollars and that public accounting agencies were partly to blame.

What it means to CIOs

The problem is that the CIO doesn't know if the information is all correct, Ellard argued. "All they can do is say that the computer didn't change the data; they don't know what is going in and out. CIOs now are asking for help from people like us to understand what they have and don't have," he said.

Going forward, the SEC hopes that the internal control audit will be better integrated with the audit of financial statements.

"A one-size-first-all, bottom-up, check-the-box approach that treats all controls equal is less likely to improve internal controls and financial reporting than a reasoned, good faith exercise of professional judgment focused on reasonable, as opposed to absolute, assurance," the SEC said.

The largest accounting firms have generally voiced support for the guidance. In a statement to the Wall Street Journal, a spokesman from Ernst & Young said, "We share with the SEC and the PCAOB that the expectation that the process will become more effective and efficient going forward and that the benefits to investors will continue to be realized. First-year implementation was a major challenge for all market participants, including the auditing firms."

Bruce Barnes, founder of Bold Vision LLC, a Dublin, Ohio, consulting firm that provides peer-to-peer advice for CIOs, sees the SEC statement as welcome news.

"Overall, I think the SEC is dead on target. The one-size-fits-all [approach] for Sarbanes-Oxley is insane," Barnes said.

Tags: SEC and FDIC regulations,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT SEC and FDIC regulations Obama launches task force to fight financial fraud Regulators issue standardized privacy notice form for GLBA compliance Heartland Payment Systems to vigorously defend breach claims, CEO says SEC cracks down on kickback schemes SEC suspends trading of 35 companies over spam SEC document offers clues on TJX security failings FFIEC impact so far

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary Federal Deposit Insurance Corporation (FDIC)  (SearchFinancialSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary