Meskipun integrasi semakin berkembang, penelitian menyoroti beberapa ketegangan dan kesenjangan. Banyak organisasi masih kesulitan mengintegrasikan ERM dan riskoriented internal audit secara penuh; internal audit sering kali kurang terlibat dalam penilaian risk strategis akibat keterbatasan skill, teknologi, dan hambatan regulasi (Rakipi & D’Onza, 2023; Nkansa et al., 2025; Ajayi et al., 2024). Terdapat perdebatan berkelanjutan mengenai sejauh mana internal audit dapat terlibat dalam consulting dan strategi tanpa mengganggu independensi, terutama dalam area ERM dan ESG (Nkansa et al., 2025; Nasal & Gani, 2023; Ajayi et al., 2024; Trudell, 2014). Studi merekomendasikan batasan yang lebih jelas, kriteria yang lebih baik untuk penjaminan atas kepatuhan dan pengerjaan forensik, serta keselarasan dengan standar internal audit global dan norma kepatuhan yang terus berkembang (misalnya ISO 37301) (Siahaan et al., 2023). Adopsi combined assurance dan GRC terintegrasi masih bervariasi antar negara dan sektor, dipengaruhi oleh tekanan regulatif dan normatif, praktik pelaporan, serta karakteristik pasar (Wibowo et al., 2022). UKM dan organisasi dengan legacy systems menghadapi tantangan interoperabilitas dan kapabilitas dalam mengimplementasikan GRC platforms digital (Faruq, 2025; Fagbore et al., 2022). Agenda penelitian ke depan menekankan auditing berbasis AI, realtime compliance analytics, blockchain audit trails, serta model penilaian Risiko berbasis teknologi untuk semakin mengintegrasikan GRC dan internal audit sambil tetap menjaga independensi dan objektivitas (Olawale et al., 2022; Faruq, 2025; Nkansa et al., 2025; Fagbore et al., 2022; Rakipi & D’Onza, 2023).

Di berbagai konteks, penelitian menunjukkan gambaran yang konsisten: GRC dan internal auditing saling memperkuat. Kerangka GRC terintegrasi menyediakan struktur, data, dan koordinasi yang memungkinkan internal audit bertransformasi dari sekadar pemeriksaan kepatuhan menjadi assurance dan advisory berbasis risiko yang relevan secara strategis. Sebaliknya, fungsi internal audit yang berkualitas tinggi memperkuat tata kelola, meningkatkan manajemen risiko, mendukung kepatuhan, serta berkorelasi dengan peningkatan kinerja, deteksi korupsi yang lebih baik, dan pengawasan ESG yang lebih kuat. Tantangan utama ke depan terletak pada pendalaman integrasi—terutama melalui digital tools dan ERM—sambil tetap menjaga independensi dan beradaptasi dengan standar serta ekspektasi yang terus berkembang.

Referensi:

  • Ajayi, J., Cadet, E., Essien, I., Erigh, E., Obuse, E., Ayanbode, N., & Babatunde, L. (2024). Building Resilient Enterprise Risk Programs through Integrated Digital Governance Models. International Journal of Scientific Research in Humanities and Social Sciences. https://doi.org/10.32628/ijsrssh242554.
  • Baharom, Z. (2025). The Role of Internal Audit in ESG Governance: A Conceptual Framework. International Journal of Research and Innovation in Social Science. https://doi.org/10.47772/ijriss.2025.908000080.
  • Fagbore, O., Ogeawuchi, J., Ilori, O., Isibor, N., Odetunde, A., & Adekunle, B. (2022). A Review of Internal Control and Audit Coordination Strategies in Investment Fund Governance. International Journal of Social Science Exceptional Research. https://doi.org/10.54660/ijsser.2022.1.2.58-74.
  • Faruq, M. (2025). A META-ANALYSIS OF CYBERSECURITY FRAMEWORK INTEGRATION IN GRC PLATFORMS: EVIDENCE FROM U.S. ENTERPRISE AUDITS. Journal of Sustainable Development and Policy. https://doi.org/10.63125/kwhkmb57.
  • Friday, S., Lawal, C., Ayodeji, D., & Sobowale, A. (2024). A Conceptual Framework for Enhancing Regulatory Compliance Through Auditing in Multinational Corporations. International Journal of Advanced Multidisciplinary Research and Studies. https://doi.org/10.62225/2583049x.2024.4.6.4100.
  • Johari, R., Razali, F., & Hashim, A. (2022). Enterprise Risk Management: Internal Auditor’s Role Perspective. International Journal of Academic Research in Accounting, Finance and Management Sciences. https://doi.org/10.6007/ijarafms/v12-i1/11413.
  • Khan, U., Ahmad, J., & Shahzad, H. (2025). Evaluating the Impact of Risk Management, Compliance Practices, and Internal Audit Quality on Organizational Performance: Evidence from Big 4 Advisory Firms in the Gulf Region. Journal of Humanities, Health and Social Sciences. https://doi.org/10.61503/jhhss/v3i1.63.
  • Nair, A., Nair, P., & Agrawal, A. (2024). Examining the Synergy Between Enterprise Risk Management and Internal Audit Functions. New Challenges in Accounting and Finance. https://doi.org/10.32038/ncaf.2024.12.01.
  • Nasal, T., & Gani, L. (2023). Evaluation of Internal Audit Role as a Governance, Risk and Compliance Partner, Trusted Advisor and Value Driver to Implement Strategy. Jurnal Ilmiah Akuntansi. https://doi.org/10.23887/jia.v7i2.47931.
  • Nkansa, P., Barr‐Pulliam, D., & Walker, K. (2025). From Compliance to Strategic Partnerships: The Role of Internal Audit in Enterprise Risk Management and Opportunities for Future Research. Journal of Risk and Financial Management. https://doi.org/10.3390/jrfm18120707.
  • Ogunsola, K., & Balogun, E. (2021). Enhancing Financial Integrity Through an Advanced Internal Audit Risk Assessment and Governance Model. International Journal of Multidisciplinary Research and Growth Evaluation. https://doi.org/10.54660/.ijmrge.2021.2.1.781-790.
  • Olawale, H., Isibor, N., & Fiemotongha, J. (2022). An Integrated Audit and Internal Control Modeling Framework for Risk-Based Compliance in Insurance and Financial Services. International Journal of Social Science Exceptional Research. https://doi.org/10.54660/ijsser.2022.1.3.31-35.
  • Rakipi, R., & D’Onza, G. (2023). The involvement of internal audit in environmental, social, and governance practices and risks: Stakeholders’ salience and insights from audit committees and chief executive officers. International Journal of Auditing. https://doi.org/10.1111/ijau.12341.
  • Rosa, S., & Chikwiri, T. (2015). Internal audit’s role in embedding governance, risk, and compliance in state-owned companies. Southern African Journal of Accountability and Auditing Research, 17, 25-39.
  • Shalimova, N., & Kozachenko, Y. (2024). Transformation of Approaches to the Implementation of Internal Audit in Modern Business Structures: Assurance, Compliance, Forensics. Central Ukrainian Scientific Bulletin. Economic Sciences. https://doi.org/10.32515/2663-1636.2024.12(45).307-318.
  • Siahaan, M., Suharman, H., Fitrijanti, T., & Umar, H. (2023). When internal organizational factors improve detecting corruption in state-owned companies. Journal of Financial Crime. https://doi.org/10.1108/jfc-11-2022-0292.
  • Trudell, C. (2014). Internal Audit’s role in the risk assessment process at KeyCorp. Journal of Risk Management in Financial Institutions. https://doi.org/10.69554/rplp3128.
  • Wibowo, S., Achsani, N., Suroso, A., & Sasongko, H. (2022). Integrated Governance, Risk, and Compliance (GRC) and Combined Assurance: A Comparative Institutional Study. Indonesian Journal of Business and Entrepreneurship. https://doi.org/10.17358/ijbe.8.2.289.