1. Introduction
Recently, there has been growing criticism of external auditors’ ability to assess fraud risk effectively, as evidenced by an increase in public scrutiny and a number of legal suits filed against external auditors. Corporate fraud and its encompassing elements are an evolving threat to the global economy. In Malaysia, the corporate fraud rate has persisted at perturbing levels, affecting businesses in various ways. PricewaterhouseCoopers (PwC)’s Global Economic Crime and Fraud Survey (
PwC 2020) reported a significant increase in corporate fraud incidents amongst the respondents, from 28% in 2016 to 43% in 2020. Continuous reports of financial scandals in Malaysia (i.e., Port Klang Free Zone (PKFZ) and 1Malaysia Development Berhad (1MDB), Transmile Group, NasionCom Holdings, Megan Media Holdings and Ho Hup Construction (The Sun 2007, as cited in
Paino 2012)), have tarnished the auditors’ reputations badly. In most cases, failure to detect fraud leads to huge financial losses, which in turn, leads to litigation against auditors; for example, in the case of Satyam Computers Limited, PwC India was fined
$7.5 million for not following the code of conduct and auditing standards in the performance of its duties (
Lal Bhasin 2013).
Therefore, there is a crucial need for a study that can enhance the quality of external auditors, especially the effectiveness of fraud risk assessment. Extensive studies have been conducted to examine factors contributing to external auditors’ effectiveness in fraud risk assessment (
Mansour et al. 2020;
Popoola et al. 2014;
Payne and Ramsay 2005;
Knapp and Knapp 2001), especially individual factors; however, the results have been inconclusive.
Samagaio and Felício (
2022) highlight the need for a study that can investigate the impact of individual factors on an external auditor’s ability to effectively assess fraud risk assessment. Therefore, the present study aims to examine the individual factors, namely personal traits, competency, and digital technology skills, which impact the external auditor’s effectiveness in combating the fraud risk. These factors have limited positive input in the context of Malaysia, where fraud cases are highly reported. This study is motivated by the call to strengthen the auditing profession to regain public trust in the external auditor as an independent assurance provider. Three research questions are addressed through data analysis using partial least-squares structural equation model (PLS-SEM). The research found that digital technology skills are the most influential factors that could enhance the effectiveness of an external auditor’s fraud risk assessment.
Theoretically, this study extends the previous research on external auditor’s judgment and decision making (JDM). Most studies on JDM have focused on an auditor’s performance of audit tasks, such as risk assessment, analytical procedures, and evidence evaluation—which represents a growing concern regarding judgment (
Sulaiman et al. 2018). In addition, auditors’ recognition of and response to fraud risk cues (
Herron and Cornell 2021) and materiality judgment (
Samagaio and Felício 2022) have come under scrutiny. Observing an increase in public scrutiny and the number of legal suits filed against external auditors in Malaysia, it is apparent that there is a crucial need for a study on factors influencing external auditors’ judgment performance, something which is currently lacking. While most studies on JDM focus on the consensus of an auditor’s judgment, this study extends the previous literature by measuring fraud risk assessment in the form of judgment accuracy. This is suggested by
Bonner (
2008), who argues that stakeholders are more concerned about the accuracy of one’s judgment compared to the extent to which one’s judgment is consistent with another judgment.
As for the determinant of judgment performance, a recent study by
Samagaio and Felício (
2022) revealed that the traits of agreeableness, conscientiousness, and openness are positively associated with the professional skepticism of auditors, while conscientiousness and neuroticism negatively affect reduced audit quality practices; however, they found no evidence that the dimension of personality traits influences materiality judgments. Hence, this study intends to extend the literature by examining personality traits as a second-order construct to prove that personality traits influence auditor judgment performance, specifically fraud risk assessment. Practically, in this era of digitalization, an external auditor must invest in upskilling their digital technology skills to create value through effective fraud risk assessment. The Malaysia Institute of Accountants (MIA) should focus on building the profession towards digitalization, where digital technology skills are vital.
4. Findings
A total of 150 or 32.96% of responses were received in the SurveyMonkey database from the 455 questionnaire links sent via e-mail, WhatsApp, and Telegram. According to
Alreck and Settle (
1995), gaining a response rate of 5% to 10% has become a common value in research. Most respondents were female, with such 100 respondents (66.7%), while only 50 (33.3%) were male. Meanwhile, 106 (70.7%) respondents were in the age group of 21 to 30 years old, the highest percentage of respondents compared to other age groups. This was followed by 36 respondents (24%) in the age group between 31 to 40 years old, while the rest, with 8 respondents (5.3%), were in the age group above 41 years old. In terms of the highest level of education, more than half of the respondents, or 114 (76%), had a bachelor’s degree, while 21 respondents (14%) had other qualifications, such as a professional certificate or A-level; the rest of the 15 respondents (10%) had a diploma.
The majority of respondents held senior positions, and audit associates with both positions had an equal percentage of 44% (66). This was followed by managers, and junior audit positions, which also had an equal percentage of 3.3% or 5 respondents, respectively; 4 respondents, or 2.7% of respondents, were partners. The remaining 4 respondents (2.6%) were senior managers or held other positions, such as senior consultant and analyst. In terms of years of audit experience, the highest percentage was those under 10 years of experience, with 52 respondents (34.7%). This is followed by 11 to 20 years of service with 8 respondents (5.3%); lastly, 3 respondents (2%) had more than 21 years of auditing experience. Meanwhile, the remaining 87 respondents (58%) did not indicate their positions in the feedback received.
More than half of the respondents, or 88 respondents (58.7%), claimed that they had validation and registration other than by possessing Association of Chartered Certified Accountants (ACCA) and Certified Public Accountant (CPA) certificates, such as by belonging to the Institute of Chartered Accountants in England and Wales (ICAEW) and Malaysian Institute of Certified Public Accountants (MICPA)-Chartered Accountants Australia and New Zealand (CAANZ). Indeed, 31 respondents (20.7%) had ACCA, 19 respondents (12.7%) did not have any certificate, and only 12 respondents (8%) had a CPA certificate. For average monthly income, the largest proportion was 51 respondents (34%), who were earning less than RM5000. This group was followed in size by that of those earning between RM5000 (USD1200) to RM10,000 (USD2300) average monthly income with 27 respondents (18%), above RM15,000 (USD3500) with 8 respondents (5.3%), and from RM10,000 to RM15,000 with 2 respondents (1.3%). Meanwhile, the remaining 62 respondents (41.3%) refused to answer this question. For the frequency of performing techniques to search for fraud, based on the data collected, 23 respondents (15.3%) rarely performed the techniques, 25 respondents (16.7%) sometimes performed the techniques, 24 respondents (16%) often performed the techniques, and 16 respondents (10.7%) indicated performing the techniques in most of their jobs.
We used partial least-squares (PLS) modeling using the SmartPLS 4.0 version (
Ringle et al. 2022) as the statistical tool to examine the measurement and structural model, as it did not require normality assumption and its survey research was not normally distributed (
Chin et al. 2003). We followed the suggestions of
Anderson and Gerbing (
1988) to test the model developed using a 2-step approach. First, we tested the measurement model to test the validity and reliability of the instruments, used following the guidelines of
Hair et al. (
2019) and
Thurasamy et al. (
2018); then, we ran the structural model to test the hypotheses developed.
4.1. Measurement Model
We assessed the loadings, average variance extracted (AVE), and composite reliability (CR) for the measurement model. The values of loadings should be ≥0.5, the AVE should be ≥ 0.5, and the CR should be ≥ 0.7. As shown in
Table 3 and
Table 4, the AVEs are all higher than 0.5, and the CRs are all higher than 0.7. The loadings were also acceptable, with few loadings less than 0.708, which is an acceptable value (
Hair et al. 2019). Thus, we concluded that the constructs meet reliability and convergent validity requirement.
Then, in step 2, we assessed the discriminant validity using the
Fornell and Larker (
1981) criterion. In PLS-SEM, discriminant validity can be assessed by comparing the square root of AVE values for two factors against the correlation estimates (r) between the same two factors. In order to achieve discriminant validity, the square root of AVE must be larger than the correlation estimate of the two factors (√AVE > r).
Table 5 depicts the assessment of discriminant validity using the Fornell and Larcker criterion, which indicate that the square root of AVE of each construct was larger than the correlation estimates of the factors. This indicated that all constructs exhibited discriminant validity and were distinct from one another. These validity tests show that the measurement items are both valid and reliable.
4.2. Structural Model
As suggested by
Hair et al. (
2019), we reported the path coefficients, the standard errors,
t values, and
p values for the structural model using a 5,000-sample re-sample bootstrapping procedure (
Thurasamy et al. 2018). Additionally, based on the criticism of
Hahn and Ang (
2017) that
p values are not a good criterion for testing the significance of a hypothesis and that researchers ought to use a combination of criteria, such as
p values, confidence intervals, and effect sizes, we expanded our criteria to include these.
Table 6 summarizes the criteria we used to test the hypotheses developed.
First, we tested the effect of the 3 predictors on EFRA; the R2 was 0.178, which shows that all the 3 predictors explained 17.8% of the variance in EFRA. Digital technology skills (β = 0.278,
p < 0.05) were positively related to EFRA; thus, H3 was supported. However, both personality traits (β = 0.158,
p > 0.05) and competency (β = 0.051,
p > 0.01) were not significant; hence HI and H2 were not supported. We also assessed the model fit using SRMR. The SRMR value is 0.119 (saturated model) and 0.122 (estimated model), exceeding the threshold value of 0.08, thus indicating a lack of fit (
Henseler et al. 2014).
5. Discussion and Conclusions
The effectiveness of the external auditor function, especially related to fraud risk assessment and fraud detection, is commonly questioned. The incidents of large companies’ bankruptcy due to negligence of corporate governance actors have caused public confidence in the audit profession to drop dramatically. The flaws in judgment that put auditors into litigation processes also happened in the British Petroleum (BP), London Inter-Bank Offered Rate (LIBOR), and Olympus cases. Thus, this study aims to assess individual factors contributing to the effectiveness of fraud risk assessment among external auditors. This study proposed three hypotheses.
Hypothesis 1 suggested no positive significant relationship between personality traits and effectiveness in assessing risk. Based on
Table 6, it is deduced that personality traits had no significant relationship with effectiveness in assessing risk; hence, H1 is rejected. This contradicts an earlier study by
Clements (
2020), who discovered that experienced fraud investigators, such as internal and external auditor, have high level sof conscientiousness, are organized, reliable, hardworking, self-directed, punctual, scrupulous, ambitious, and persevering. The accounting literature offers some context on the impact of personality traits on variables like auditors’ behavior and judgment (
Clements 2020;
Mansour et al. 2020). These studies all corroborate the deduction that the personality traits of external auditors can directly affect their ability in fraud risk assessments. Moreover,
Emerson and Yang (
2012) and
Mansour et al. (
2020) determined that a high level of conscientiousness affects auditors’ efficiency in fraud risk assessments and fraud detection. However, this finding proved that auditors’ personality traits are not an influencing factor that helps them assess fraud risk.
Hypothesis 2 suggested no positive significant relationship exists between auditors’ competency and effectiveness in assessing fraud risk. These findings depict that competency had no significant relationship with effectiveness in assessing risk. Due to the pervasive and highly evolving nature of fraud, external auditors are required to demonstrate a level of competency being regulated and stipulated by regulatory agencies because of the need to align a certain skill set with evolving fiscal needs. A study by
Mansour et al. (
2020) deduced that competent auditors and accountants, whose competency was measured in terms of educational qualification and number of years in service (experience), were more likely to detect fraudulent activity than less competent professionals. This postulation was supported by
Asmara (
2016), who established a significant relationship between the competency of external auditors and their effectiveness in fraud risk assessments.
Asmara (
2016) concluded that the competency of external auditors had a 7.8% positive effect on auditing quality, which denotes the ability of the auditor to detect and prevent fraud.
Hypothesis 3 proposed a positive significant relationship between auditors’ digital technology skills and effectiveness in assessing fraud risk.
Ismail and Abidin (
2009) argued that integrating IT into the business sector means that auditors are no longer required to have basic computer skills, but rather make use of highly advanced digital technology skills that enable them to detect potential fraud risks. This postulation is reinforced by numerous studies showing a paradigm shift in conventional auditing to highly complex and dynamic systems that require auditors to go above and beyond digital skills to include assessing the adequacy of control software systems used by businesses in fraud prevention and detection (
Paino 2012).
Ismail and Abidin (
2009) and
Al-Ansi et al. (
2013) asserted that, in contemporary work settings, external auditors are required to implant and utilize technology during the audit process. For instance, blockchain technology (
Meiryani et al. 2021), data visualization, data extraction, analytics (
Chiang et al. 2021), and artificial intelligence (
Nora et al. 2022) are the essential digital skills needed by auditors to be able to ascertain and recognize fraudulent patterns embedded in digital fiscal statements. This postulation is reinforced by
Ismail and Abidin (
2009), who deduced that highly competent and effective auditors are conversant with ways through which IT advancements can be integrated into their processes to enhance the outcomes for both the client and the process. All of these research findings converge into the same implication: the need for auditors to equip themselves with digital skills to ensure the quality of the audit process, including the effectiveness of fraud risk assessment.
This study contributes to identifying important factors affecting the effectiveness of fraud risk assessment. Practically, the findings could benefit audit firms by highlighting the key skills that need further development among external auditors. Thus, the Malaysian Institute of Accountants (MIA), as a body that governs the external audit profession, could highlight the importance of digital technology skills to enhance external auditors’ fraud risk assessment. However, the article has some limitations, namely the small research sample size, which means it cannot represent all populations of external auditors. Moreover, the study only evaluated three main individual factors and did not mention other related factors. Therefore, future studies should take note of these points, extend this study and overcome its limitations.