United States

Aligning IT Risk Management With the Enterprise Through Effective Key Risk Indicators

Jun 09, 2014
From the Advisory Institute

Businesses are starting to focus on determining enterprise risk appetite and measuring adherence to it, but many have paid too little attention to how their IT systems affect risk appetite. The reason? Challenges choosing and applying appropriate IT key risk indicators (KRIs).

This article describes how an organization can define IT KRIs and establish KRI thresholds that align with enterprise-wide business objectives and risk appetite. Read it to gain insight into:

  • Strategic view of KRIs and why they are relevant
  • Techniques for identifying KRIs
  • Applying KRIs to anticipate future risks


Read Aligning IT Risk Management with the Enterprise through Effective Key Risk Indicators


Contact KPMG

Phillip Lageschulte
Network Leader, IT Internal Audit, KPMG LLP