The Interrelation of Information Technology Governance and Enterprise Risk Management to The Organization’s Performance: A Review of Empirical Literature

Abstract

Given that the role of information technology (IT) governance and enterprise risk management (ERM) within the organization are imperative due to the ever-increasing complexity in the corporate environment, this study aims to uncover the relationship between IT governance and ERM along with the impact of the two frameworks’ interconnectedness on the organization’s performance through empirical literature review. Furthermore, the findings obtained from the empirical review are also used to create a checklist that every organization can apply. The purpose of the created checklist is to help organizations examine the interconnectedness of their IT governance and ERM with respect to their needs and objectives. The findings from the empirical review show that both IT governance and ERM emphasize the importance of strategic and process alignment regarding its implementation, and it is positively significant to the organization’s performance. Hence, the level of effectiveness of one’s IT- and risk-oriented approaches are dictated by how well an organization appropriately aligns its IT governance and ERM structure, mechanism, and process with its objectives, needs, and business operations.