IT Governance and Audit Risk in Jordanian Companies: The Moderating Role of Audit Quality

Abstract

Purpose: In order to better understand how IT governance COBIT5 (planning and organization (PO), acquisition and implementation (AI), support and delivery (SD), monitoring and evaluation (ME), guidance and control (GC), and audit risks interact in Jordanian businesses, this study will examine the moderating role of audit quality.   Design/methodology/approach: This study uses a mixed method combining quantitative and qualitative method.   Primary data: IT governance and audit risk with questionnaires distributed to 528 workers from each of the 176 Jordanian companies. The three employees served as a representative sample from the finance, internal audit, and IT departments. Secondary data: Using SPSS software, the data was analyzed to determine the audit quality using the financial statements of Jordanian businesses listed on the Amman Stock Exchange for the year 2020.   Results and conclusion: The results of this study have shown that the COBIT5 framework is an important accountability mechanism for motivating expected behavior in the workplace when it comes to technology use. Audit risk is directly affected by the IT governance structure.   Practical implications: This study is important for companies in Jordan, by presenting an integrated framework in this study that combines IT governance, audit risks and audit quality. This study was expected to facilitate the companies' efforts by ensuring a sufficient degree of confidence in the applied accounting system and improving the information security within the system to maintain the organizations and audit quality at the same time.   Originality/value: This study adds to the body of knowledge on IT governance, audit risk, and audit quality that has concentrated on developing nations, particularly Jordan.