Jun 09, 2014
From the Advisory Institute
Businesses are starting to focus on determining enterprise risk appetite and measuring adherence to it, but many have paid too little attention to how their IT systems affect risk appetite. The reason? Challenges choosing and applying appropriate IT key risk indicators (KRIs).
This article describes how an organization can define IT KRIs and establish KRI thresholds that align with enterprise-wide business objectives and risk appetite. Read it to gain insight into:
- Strategic view of KRIs and why they are relevant
- Techniques for identifying KRIs
- Applying KRIs to anticipate future risks
Network Leader, IT Internal Audit, KPMG LLP