What is not an example of a risk arising from an IT-enabled business change?

The identification of disaster recovery plan failures due to changes in phone numbers as an example of risk not arising from IT-enabled business change is accurate because this scenario pertains more to operational or administrative oversight rather than a direct consequence of implementing new technology or IT systems.

In the context of IT-enabled business change, risks typically stem from the introduction of new systems, processes, or technologies and their implications on business operations. The other examples provided directly relate to issues that are often experienced during or as a result of a business change implemented through IT.

Poor response time from moving to an online order entry system reflects a risk associated with performance and user satisfaction due to the changes made. Limited training and the effective use of a new compliance system are critical concerns that can arise when introducing new software solutions. Similarly, poor information flows can severely affect redesigned processes, highlighting risks inherent to new IT systems and how they interact with existing workflows.

By contrast, the failure of a disaster recovery plan due to changes in contact details signals a lack of attention to ongoing maintenance and communication protocols rather than a risk from the IT-enabled change itself, which justifies its distinction from the other scenarios.