Title: The Sarbanes-Oxley Act and the changing role of the CIO and IT function

Authors: Steve G. Sutton, Vicky Arnold

Addresses: University of Central Florida, College of Business Administration, Kenneth G. Dixon School of Accounting, P.O. Box 161400, Orlando, FL, USA. ' University of Central Florida, College of Business Administration, Kenneth G. Dixon School of Accounting, P.O. Box 161400, Orlando, FL, USA

Abstract: The focus of this study is on the changing role of the Chief Information Officer (CIO). At a time when there is an increasing focus on corporate governance and enterprise risk management, the competencies required of CIOs are evolving causing a shift to a third era of the CIO. This shift is being accelerated and influenced by the passage of the Sarbanes-Oxley Act of 2002 in the USA. This Act mandates detailed reporting of internal controls over financial and related systems, and has consumed the energy and the budgets of the IT function in the past few years. In the coming years, the Act will likely impact the success of CIOs and the competencies desired by organisations hiring CIOs. These issues are explored in detail. The article concludes with an agenda for research on CIOs in this new era.

Keywords: Chief Information Officer; CIO role; Sarbanes-Oxley Act; IT governance; internal control; IT security; corporate governance; enterprise risk management; information technology; interorganisational systems; CIO competencies; business information systems.

DOI: 10.1504/IJBIS.2005.007403

International Journal of Business Information Systems, 2005 Vol.1 No.1/2, pp.118 - 128

Published online: 18 Jul 2005 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article