"Development of a digital risk management capability requires deconstruction and re-engineering of current organisational structures and allocations of responsibility as well as the development of new capabilities in security and risk assessment, monitoring, analysis and control. By 2019, the new digital risk concept will become the default approach for technology risk management, Proctor said.
"Digital risk officers will influence governance, oversight and decision making related to digital business.
"This role will explicitly work with non-IT executives in various capacities to better understand digital business risk and facilitate a balance between the needs to protect the organization and the needs to run the business.
"However, the cultural gap between IT and non-IT decision makers presents a significant challenge. Many executives believe technology -- and therefore technology-related risk -- is a technical problem, handled by technical people, buried in IT.
"If this gap is not bridged effectively, technology and consequent business risk will hit inappropriate levels and there will be no visibility or governance process to check this risk."
Sign up for Computerworld eNewsletters.