a )Many fraudulent financial reporting schemes have unraveled due to whistleblowers or hotline tips. In todays fast-paced environment, these fraud prevention programs are essential components in an organizations internal control structure. Unfortunately, there are a various negative connotations with whistleblowers. Imagine you developing the whistleblower component of the company you work for, how would you structure the whistleblower policy? What measures would you put in place to reduce the barriers for employees to report fraudulent activity? (To answer this discussion question, you can use your current job, previous job experience or fictional job.)

b) Reflect on what you have learned and how you have benefited from taking this course. Reflect and describe which key concepts and topics in this course have made you a stronger candidate to enter the business world. Discuss how this course has affected you in your professional development as a student and as a person as well as encouraging you on your academic path.

c) I have subscribed to several audit sites that discuss SOX and implementation. Below is a question that was asked - I thought it would be interesting discussion here. What are your thoughts on the question below....

Let me pose a hypothetical case as it relates to Sarbanes Oxley 404 compliance. Suppose that in the course of their review, the external auditors copy the compliance testing workpapers which were prepared by members of the Internal Audit staff.

After issuing an unqualified opinion, a financial scandal erupts in the company, triggering a shareholder lawsuit. During discovery, the external auditors state that they relied on the workpapers of Internal Audit. While this will not be a defense for the external auditors, the attorney tracks down the Internal Audit staff member whose initials appear on the original workpaper stating the procedures were adequate and effective. This staff member also happens to be a CPA and/or CIA.

What is the possibility that this individual staff internal auditor (not a corporate officer or Audit Director) can be named as a party to the lawsuit and be held personally liable on the basis that as a certified professional he had a higher responsibility to ensure that the information was correct. Is this something we should be considering before allowing the external auditors to copy our workpapers?