Meta-analisis menunjukkan bahwa integrasi kerangka cybersecurity (misalnya NIST, ISO 27001, COBIT) ke dalam GRC platforms meningkatkan tingkat pengecualian audit, mengurangi kegagalan pengendalian, dan menekan pelanggaran kepatuhan (Faruq, 2025). Tools GRC memusatkan kebijakan, risk registers, control libraries, dan audit workflows, sekaligus mengotomatisasi pengumpulan bukti serta meningkatkan audit readiness dan response time (Faruq, 2025; Fagbore et al., 2022). Dalam lingkungan IT dan dana investasi, integrasi GRC yang didukung oleh pengendalian umum IT yang kuat memungkinkan koordinasi antara internal dan eksternal audit, continuous monitoring, serta pengurangan temuan berulang (Olawale et al., 2022; Nair et al., 2024).

Penelitian empiris mengaitkan GRC terintegrasi dan internal audit yang kuat dengan outcome yang terukur. Pada perusahaan BUMN, GRC terintegrasi, kualitas internal audit yang tinggi, dan komitmen manajemen yang kuat secara signifikan meningkatkan kemampuan organisasi dalam mendeteksi korupsi; ketiganya berfungsi sebagai “early warning system” (Friday et al., 2024). Studi lain pada entitas milik negara menunjukkan bahwa internal auditor membantu mengintegrasikan proses GRC dan meningkatkan maturity GRC melalui koordinasi protokol combined assurance, terutama ketika didukung oleh manajemen tingkat atas (Shalimova & Kozachenko, 2024). Pada firm advisory Big 4 di kawasan Teluk, kualitas internal audit, praktik manajemen risiko, dan kerangka kepatuhan semuanya memiliki hubungan positif dan signifikan dengan kinerja organisasi; kualitas internal audit memiliki pengaruh paling kuat (Johari et al., 2022). Temuan serupa juga terlihat dalam sektor keuangan, di mana model penilaian Risiko internal audit yang advanced dan governance frameworks diposisikan sebagai faktor kritis bagi integritas keuangan, mitigasi penipuan, dan kepatuhan regulasi (Olawale et al., 2022; Khan et al., 2025).

Framework ERM yang diterapkan secara enterprise-wide juga meningkatkan efisiensi internal audit: auditor menggunakan data ERM untuk memprioritaskan audit dan fokus pada area berisiko tinggi, sehingga meningkatkan cakupan Risiko dan efisiensi penggunaan sumber daya (Nasal & Gani, 2023; Ajayi et al., 2024). Model GRC digital terintegrasi juga dikaitkan dengan pemulihan insiden yang lebih cepat, audit readiness yang lebih baik, serta respons yang lebih agile terhadap perubahan regulasi (Faruq, 2025; Fagbore et al., 2022).

Referensi:

  • Ajayi, J., Cadet, E., Essien, I., Erigh, E., Obuse, E., Ayanbode, N., & Babatunde, L. (2024). Building Resilient Enterprise Risk Programs through Integrated Digital Governance Models. International Journal of Scientific Research in Humanities and Social Sciences. https://doi.org/10.32628/ijsrssh242554.
  • Baharom, Z. (2025). The Role of Internal Audit in ESG Governance: A Conceptual Framework. International Journal of Research and Innovation in Social Science. https://doi.org/10.47772/ijriss.2025.908000080.
  • Fagbore, O., Ogeawuchi, J., Ilori, O., Isibor, N., Odetunde, A., & Adekunle, B. (2022). A Review of Internal Control and Audit Coordination Strategies in Investment Fund Governance. International Journal of Social Science Exceptional Research. https://doi.org/10.54660/ijsser.2022.1.2.58-74.
  • Faruq, M. (2025). A META-ANALYSIS OF CYBERSECURITY FRAMEWORK INTEGRATION IN GRC PLATFORMS: EVIDENCE FROM U.S. ENTERPRISE AUDITS. Journal of Sustainable Development and Policy. https://doi.org/10.63125/kwhkmb57.
  • Friday, S., Lawal, C., Ayodeji, D., & Sobowale, A. (2024). A Conceptual Framework for Enhancing Regulatory Compliance Through Auditing in Multinational Corporations. International Journal of Advanced Multidisciplinary Research and Studies. https://doi.org/10.62225/2583049x.2024.4.6.4100.
  • Johari, R., Razali, F., & Hashim, A. (2022). Enterprise Risk Management: Internal Auditor’s Role Perspective. International Journal of Academic Research in Accounting, Finance and Management Sciences. https://doi.org/10.6007/ijarafms/v12-i1/11413.
  • Khan, U., Ahmad, J., & Shahzad, H. (2025). Evaluating the Impact of Risk Management, Compliance Practices, and Internal Audit Quality on Organizational Performance: Evidence from Big 4 Advisory Firms in the Gulf Region. Journal of Humanities, Health and Social Sciences. https://doi.org/10.61503/jhhss/v3i1.63.
  • Nair, A., Nair, P., & Agrawal, A. (2024). Examining the Synergy Between Enterprise Risk Management and Internal Audit Functions. New Challenges in Accounting and Finance. https://doi.org/10.32038/ncaf.2024.12.01.
  • Nasal, T., & Gani, L. (2023). Evaluation of Internal Audit Role as a Governance, Risk and Compliance Partner, Trusted Advisor and Value Driver to Implement Strategy. Jurnal Ilmiah Akuntansi. https://doi.org/10.23887/jia.v7i2.47931.
  • Nkansa, P., Barr‐Pulliam, D., & Walker, K. (2025). From Compliance to Strategic Partnerships: The Role of Internal Audit in Enterprise Risk Management and Opportunities for Future Research. Journal of Risk and Financial Management. https://doi.org/10.3390/jrfm18120707.
  • Ogunsola, K., & Balogun, E. (2021). Enhancing Financial Integrity Through an Advanced Internal Audit Risk Assessment and Governance Model. International Journal of Multidisciplinary Research and Growth Evaluation. https://doi.org/10.54660/.ijmrge.2021.2.1.781-790.
  • Olawale, H., Isibor, N., & Fiemotongha, J. (2022). An Integrated Audit and Internal Control Modeling Framework for Risk-Based Compliance in Insurance and Financial Services. International Journal of Social Science Exceptional Research. https://doi.org/10.54660/ijsser.2022.1.3.31-35.
  • Rakipi, R., & D’Onza, G. (2023). The involvement of internal audit in environmental, social, and governance practices and risks: Stakeholders’ salience and insights from audit committees and chief executive officers. International Journal of Auditing. https://doi.org/10.1111/ijau.12341.
  • Rosa, S., & Chikwiri, T. (2015). Internal audit’s role in embedding governance, risk, and compliance in state-owned companies. Southern African Journal of Accountability and Auditing Research, 17, 25-39.
  • Shalimova, N., & Kozachenko, Y. (2024). Transformation of Approaches to the Implementation of Internal Audit in Modern Business Structures: Assurance, Compliance, Forensics. Central Ukrainian Scientific Bulletin. Economic Sciences. https://doi.org/10.32515/2663-1636.2024.12(45).307-318.
  • Siahaan, M., Suharman, H., Fitrijanti, T., & Umar, H. (2023). When internal organizational factors improve detecting corruption in state-owned companies. Journal of Financial Crime. https://doi.org/10.1108/jfc-11-2022-0292.
  • Trudell, C. (2014). Internal Audit’s role in the risk assessment process at KeyCorp. Journal of Risk Management in Financial Institutions. https://doi.org/10.69554/rplp3128.
  • Wibowo, S., Achsani, N., Suroso, A., & Sasongko, H. (2022). Integrated Governance, Risk, and Compliance (GRC) and Combined Assurance: A Comparative Institutional Study. Indonesian Journal of Business and Entrepreneurship. https://doi.org/10.17358/ijbe.8.2.289.