This seems right but unfortunately there are some limitations to it. Embedded audit modules that are designed by outside auditors limit the independency of the ERP when it is implemented which causes some differences in results between both. These results sometimes are very hard to be audited. Another issue is the cost of maintaining it to operate at high level which sometimes becomes a problem instead of solution when the wrong hardware are placed between them.
Also, implementing embedded audit module into an enterprise resource planning rises some practical issues. This happens mostly in organizations that are large and utilizing more than one enterprise resource planning. For example, design and maintenance issues arise when
embedded audit module is used in an organization with multiple enterprise resource planning. That is because the organization will have to consume important resources in order to design, use, and maintain the embedded audit module coding for each enterprise resource planning. Therefore, each embedded audit module code would acquire an individual maintenance.
The Sarbanes-Oxley which “is to protect investors by improving the accuracy and reliability of corporate disclosures made pursuant to...