Referências Bibliográficas


1. Davies, I., Green, P., Rosemann, M., Indulska, M., Gallo, S.: How do Practitioners Use Conceptual Modeling in Practice? Data & Knowledge Engineering 58 (2006) 358-380
2. Dumas, M., van der Aalst, W.M.P., ter Hofstede, A.H.M. (eds.): Process Aware Information Systems: Bridging People and Software Through Process Technology. John Wiley & Sons, Hoboken, New Jersey (2005)
3. Davenport, T.H., Short, J.E.: The New Industrial Engineering: Information Technology and Business Process Redesign. Sloan Management Rview 31 (1990) 11-27
4. Adams, S. (2004). Age discrimination legislation and the employment of older workers. Labour Economics. Vol. 11 (2004): 219–241
5. Ahrens, T. & C. S. Chapman (2004): Accounting for flexibility and efficiency: A field study of management control systems in a restaurant chain, Contemporary Accounting Research, volume 21, issue 2: 271-301 AICPA & CICA (2003). Trust Services Principles and Criteria: Incorporating SysTrust and WebTrust. American Institute of Certified Public Accountants, Inc. and Canadian Institute of Chartered Accountants. Available from http://www.webtrust.net/downloads/WT.TrustServices.pdf. Accessed 3/5 2006.
6. Anthony, R. & V. Govindarajan (2003). Management Control Systems. New York: MacGraw Hill.
7. Ashford, N. & C. Caldart (2001). Negotiated environmental and occupational health and safety agreements in the United States: Lessons for policy. Journal of Cleaner Production. Vol. 9 (2001): 99–120.
8. Baker R. W. E. Bealing Jr. D. A. Nelson A. Blair Staley (2006). An Institutional Perspective of the Sarbanes-Oxley Act. Managerial Auditing Journal 21(1): 23-33.
9. Ballou, B., Godwin, N. H. and Tilbury, V. (2000) Riverfest: Managing Risk and Measuring Performance at Little Rock's Annual Music and Arts Festival. Issues in Accounting Education. Vol. 15: 483-512.
10. Booker, S.; J. Gardner; L. Steelhammer; J. Zumbakvte (2004). What Is Your Risk Appetite? The Risk-IT Model. International Information System and Control Journal. Vol 2: pp. 5-9.
11. Borodzicz, E. P. (2005). Risk, Crisis and Management. New York: John Wiley & Sons.
12. Byington J. R. & J. A. Christensen (2005). SOX 404: How do you control your internal controls? Journal of Corporate Accounting and Finance. May/June 2005: 35-40.
13. Cannon D. M. & G. A. Growe (2004). ‘SOA Compliance: Will IT Sabotage your Efforts?’ Journal of Corporate Accounting & Finance. July/August 2004: 31-37.
14. Charette, R. (1990). Applications Strategies for Risk Management. McGraw-Hill New York.
15. Chenhall, R. (2003). Management Control Systems Design Within its Organisational Context: Findings from Contingency-based research and Directions for the Future. Accounting, Organizations and Society. Vol.28 (2-3): 127-168.
16. COSO - Committee of Sponsoring Organizations (COSO) (1992). Internal Control - Integrated Framework, www.coso.org. accessed February 26 2006
17. COSO - Committee of Sponsoring Organizations (COSO) (2004). Enterprise Risk Management, www.coso.org. Accessed February 26 2006.
18. CRA - Charles River & Associates (2005). Sarbanes-Oxley Section 404: Costs and Remediation of Deficiencies: Estimates from a Sample of Fortune 1000 Companies. Available from http://www.crai.com. Accessed 1/3 2006
19. Davenport, T. H., J. G. Harris & S. Cantrell (2004): Enterprise systems and ongoing process change, Business Process Management Journal, Vol.10 (1): 16-26.
20. DrugResearcher (2004) Non-compliance costs drug industry dear. http://www.drugresearcher.com/news/ng.asp?id=54525-noncompliance-costs. Accessed May 5 2006.
21. Emmanuel, C., D. Otley & K. Merchant (1995). Accounting for Management Control. London: Chapman & Hall.
22. lamholtz, F. & T. K. Das (1985). Toward an Integrative Framework of Organizational Control. Accounting Organizations and Society. Vol 10(1): 35-50.
23. Gangadahran, L. (2006). Environmental compliance by firms in the manufacturing sector in Mexico. Ecological Economics – In Press 5/5 2006.
24. Gemmer, A. (1997). Risk Management: Moving Beyond Process. In Computer. Vol. 30: 33 - 43.
25. ranlund, M. & J. Mouritsen (2003). Introduction: problematizing the relationship between management control and information technology. European Accounting Review. Vol 12 (1): 77-83
26. Harmon, P. (2003). Business Process Change. Morgan Kaufman Publishers. San Francisco.
27. IMJ - Information Management Journal (2004). AMR Research 2004: Compliance Costs Are Rising. Information Management Journal. November/December: 6.
28. ITGI – IT Governance Institute (2004). IT Control Objectives for Sarbanes-Oxley. Rolling Meadows (IL): IT Governance Institute Available from www.isaca.org. Accessed 1/3 2006.
29. ITGI – IT Governance Institute (2005). Control Objectives for Information and related Technology. Rolling Meadows (IL): IT Governance Institute. Available from www.isaca.org. Accessed 1/3 2006.
30. Jaafari, A. (2001). Management of Risks, Uncertainties and Opportunities on Projects: Time for a Fundamental Shift. International Journal of Project Management. Vol. 19: 89-101.
31. Kendal K. (2004). A 10 Step Sarbanes-Oxley Solution. Internal Auditor. December 2004: pp. 51-55.
32. Kliem, R. L. (2000) Risk Management for Business Process Reengineering Projects, Information Systems Management. Vol. 17: 71-73.
33. March, J. G. & Z. Shapira, Z. (1987). Managerial Perspectives on Risk and Risk Taking. Management Science, Vol. 33: 1404-1418.
34. Markham, R. & P. Hamerman (2005). The Forrester Wave™: Sarbanes-Oxley Compliance Software. Evaluation Of Top SOX Software Vendors Across 58 Criteria. Available from www.forrester.com. Accessed May 3 2006
35. Matyjewicz G. & J. D’Arcangelo (2004). Beyond Sarbanes Oxley. Internal Auditor October 2004: 67-72.
36. Merchant, K. A. & Van der Stede, W. A. (2003). Management Control Systems: Performance Measurement, Evaluation and Incentives. London: Pearson/Prentice Hall.
37. Otley, D. & A. Berry (1980). Control, organization, and accounting. Accounting, Organizations and Society. Vol 5 (2): 231-246.
38. Rikhardsson, P. C. Rohde, A. Rom (2005). Exploring Enterprise Systems and Management Control in the Information Society: Developing a Conceptual Framework. Presented at the 6th International Research Symposium on Accounting Information Systems, December 10-11, 2005, Las Vegas, USA.
39. Shue L. (2004). Sarbanes Oxley and IT outsourcing. Information System Audit and Control Association. Vol. 5: 5-9
40. Simons, R. (1995). Levers of Control. Boston, Mass.: Harvard Business School Press.
41. Simons, R. (2000). Performance measurement and control systems for implementing strategy: Text & cases, Upper Saddle River: PrenticeHall.
42. Stephens, D. (2005). The Sarbanes-Oxley Act: Record Management Implications. Records Management Journal. Vol. 15(2): 98-103.
43. uh, B. and Han, I. (2003) The IS Risk Analysis Based on a Business Model. Information & Management, 41: 149-158.
44. Sutton, S. (2005). The Role of AIS in guiding Practice. International Journal of Accounting Information Systems. Editorial. Vol 6. (2005): 1-4.
45. Testa, B. (2005). The high cost of noncompliance. Electronic Business Online http://www.reed-electronics.com/ebmag/article/CA6252379?pubdate=9%2F1%2F2005. Accessed May 4 2006.
46. Waldman, M. (2005). Operationalizing Sarbanes-Oxley: How to Leverage Sarbanes-Oxley to Add Value to Business Operations. Percipio Consulting Group. Available from http://www.percipiogroup.com. Accessed May 1 2006.
47. Wang, R. & D. Strong (1996). Beyond Accuracy: What Data Quality Means to Data Consumers. Journal of Management Information Systems. Vol. 12 (4):5-34.
48. Ward, S. and Chapman, C. (1994) Transforming Project Risk Management into Project Uncertainty Management. International Journal of Project Management. Vol. 21: 97-105.
49. Yu, F.-J., Hwang, S.-L. and Huang, Y.-H. (1999) Task Analysis for Industrial Work Process from Aspects of Human Reliability and System Safety. Risk Analysis. Vol. 19: 401-415.
50. zur Muehlen, M. & M. Rosemann (2005). Integrating Risks in Business Process Models. Presented at the 16th Australasian Conference on Information Systems, 29 Nov – 2 Dec 2005, Sydney.