Tujuan Penelitian: Penelitian ini bertujuan untuk mengeksplorasi bagaimana penerapan Governance, Risk, dan Compliance (GRC) secara menyeluruh dapat memperkuat peran audit internal sebagai pilar utama dalam menciptakan nilai tambah bagi organisasi.

Metode Penelitian: Penelitian ini menggunakan pendekatan kualitatif deskriptif dengan studi literatur. Sumber data berasal dari jurnal ilmiah, standar internasional, laporan lembaga profesi, dan studi kasus perusahaan. Data dianalisis secara tematik untuk mengidentifikasi hubungan antara GRC dan audit berbasis nilai tambah.

Originalitas/Kebaharuan: Penelitian ini menawarkan integrasi penuh prinsip GRC dalam konteks audit internal, yang masih jarang dibahas dalam literatur sebelumnya. Pendekatan ini memberikan wawasan baru tentang bagaimana GRC dapat meningkatkan efektivitas audit internal dan menciptakan nilai tambah bagi organisasi.

Hasil Penelitian: Hasil penelitian menunjukkan bahwa integrasi Governance, Risk, dan Compliance (GRC) menjadi landasan penting dalam menciptakan audit strategis yang adaptif terhadap kompleksitas bisnis modern. Dengan menyatukan tata kelola, manajemen risiko, dan kepatuhan, GRC memberikan kerangka kerja yang komprehensif untuk pengambilan keputusan berbasis data serta penguatan akuntabilitas. Penerapan GRC menjadikan audit internal bukan sekadar fungsi kepatuhan, melainkan mitra strategis yang berkontribusi terhadap efektivitas strategi, mitigasi risiko, dan keberlanjutan organisasi

Implikasi: Penelitian ini menekankan pentingnya penerapan GRC dalam organisasi untuk meningkatkan efektivitas audit internal dan menciptakan nilai tambah. Hasil ini dapat membantu organisasi dalam merancang dan mengimplementasikan sistem GRC yang lebih efisien dan efektif, serta memperkuat posisi audit internal sebagai mitra strategis dalam mencapai tujuan organisasi.

Research Objectives: This study aims to explore how the comprehensive implementation of Governance, Risk, and Compliance (GRC) can strengthen the role of internal audit as a mainstay in creating value-added for organizations.

Research Method: This research employs a qualitative descriptive approach with a literature study. Data sources include scientific journals, international standards, professional institution reports, and company case studies. The data is analyzed thematically to identify the relationship between GRC and value-added auditing.

Originality/Novelty: This research offers a full integration of GRC principles in the context of internal auditing, a topic that is still rarely discussed in previous literature. This approach provides new insights into how GRC can enhance the effectiveness of internal auditing and create value-added for organizations.

Research Results: The results indicate that the integration of Governance, Risk, and Compliance (GRC) forms a crucial foundation for creating a strategic audit adaptive to the complexity of modern business. By unifying governance, risk management, and compliance, GRC provides a comprehensive framework for data-driven decision-making and accountability enhancement. The implementation of GRC transforms internal auditing from a mere compliance function to a strategic partner contributing to strategy effectiveness, risk mitigation, and organizational sustainability.

Implications: This research underscores the importance of implementing GRC within organizations to enhance the effectiveness of internal auditing and create value-added. The findings can assist organizations in designing and implementing more efficient and effective GRC systems, as well as in strengthening the position of internal auditing as a strategic partner in achieving organizational goals.

Acharya, V. (2024). Challenges in integrated GRC implementation: A systemic perspective. Journal of Governance and Compliance, 12(3), 45–62.

Ahen, F. (2023). Stakeholder-centric auditing: Bridging ethics and value creation. International Journal of Auditing, 27(2), 89–104.

Arens, A. A. (2017). Auditing and assurance services: An integrated approach (16th ed.). Pearson.

Arszulowicz, M. (2024). Contemporary governance frameworks in volatile environments. Governance Quarterly, 8(1), 112–130.

Badara, M. S., & Sadidin, S. (2014). The impact of internal audit effectiveness on organizational performance. Journal of Accounting and Auditing, 5(2), 1–10.

Betri, S. (2019). Fraud prevention through internal audit: Evidence from emerging markets. Journal of Financial Crime, 26(4), 987–1002.

Braun, V., & Clarke, V. (2006). Using thematic analysis in psychology. Qualitative Research in Psychology, 3(2), 77–101.

Clapton, W. (2014). Risk and hierarchy in international society. Palgrave Macmillan.

Clarke, T., & Branson, D. (2023). The Sage handbook of corporate governance (2nd ed.). Sage Publications.

COSO. (2017). Enterprise risk management—Integrating with strategy and performance. Committee of Sponsoring Organizations of the Treadway Commission.

Dani, S. (2023). Strategic internal auditing in the digital era. Auditing Today, 15(3), 34–50.

Effendy, J. (2016). Corporate governance and audit quality: Evidence from Indonesia. Asian Journal of Business Ethics, 5(1), 1–15.

Freeman, R. E., Harrison, J. S., & Zyglidopoulos, S. (2021). Stakeholder theory: Concepts and strategies (2nd ed.). Cambridge University Press.

Huong, N. T. (2018). Internal audit effectiveness: Evidence from Vietnam. Journal of Accounting and Finance, 18(2), 45–60.

Matias, G., Risiko, A., & Nurhadi, D. (2024). GRC integration in auditing: A systematic literature review. Journal of Risk and Governance, 11(1), 78–95.

O’Toole, J. (2024). The executive’s guide to integrated GRC. Harvard Business Review Press.

Paine, L. S. (2022). Corporate integrity: Rethinking organizational ethics. Cambridge University Press.

Rahmona, A. (2021). Risk-based auditing in practice: Challenges and solutions. Auditing and Control Journal, 9(4), 22–37.

Risiko, M. (2023). Decision-making under uncertainty: A risk management perspective. Risk Analysis, 43(5), 1023–1040.

Schmitter, P. C., & Schmitter, L. (2019). Governance and democracy in turbulent times. Routledge.

Song, L. (2018). Compliance culture and organizational resilience. Journal of Business Ethics, 150(3), 631–645.

Sugiyanto, B., & Kartolo, R. (2023). GRC implementation in Indonesian companies: A qualitative study. Indonesian Journal of Accounting Research, 24(2), 145–160.

Syueb, M., et al. (2021). GRC frameworks: A comparative analysis. International Journal of Governance, 6(1), 1–18.

Weiyu, Z. (2024). Value-added auditing: A strategic tool for organizational growth. Auditing Perspectives, 17(2), 55–70.

Xie, Y. (2024). Beyond compliance: The evolution of internal auditing. Journal of Accounting Innovation, 8(1), 112–125.

Crmsindonesia.org. (2024). Understanding GRC frameworks. https://www.crmsindonesia.org/grc-frameworks

Diligent.com. (2023). The role of GRC in modern organizations. https://www.diligent.com/insights/grc

OCEG. (2023). GRC fundamentals. Open Compliance and Ethics Group. https://www.oceg.org/grc-fundamentals