USING INFORMATION TECHNOLOGY GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE (GRC) AS A CREATOR OF BUSINESS VALUES - A CASE STUDY

被引：0

作者：

Jokonya, Osden ^{[1
]}

Lubbe, Sam ^{[1
]}

机构：

[1] UNISA, Sch Comp, Adelaide, SA, Australia

来源：

SOUTH AFRICAN JOURNAL OF ECONOMIC AND MANAGEMENT SCIENCES | 2009年 / 12卷 / 01期

关键词：

D O I：

暂无

中图分类号：

F [经济];

学科分类号：

02 ;

摘要：

The relationship between information technology (IT) governance, risk management and compliance (GRC) and organisation business values continues to interest academics and practitioners (IT Governance Institute, 2003). Like governance, risk management and compliance generally, IT GRC is about the decision rights and accountabilities that encourage desirable behaviour in the use of IT (IT Governance Institute, 2003). A case study approach was used in an organisation with many business units. The organisation selected is a mining company, RioZim, situated in Zimbabwe. Data was collected from business units on IT issues and business values. The interviews centred on the IT GRC practices based on responsibility and authority for IT decision-making. The results suggest that IT GRC does not adequately support business values. The study revealed that business values should drive IT GRC and IT GRC should be the responsibility of executives and all business units.

引用

页码：115 / 125

页数：11

共 50 条

[1] MAVEN Information Security Governance, Risk Management, and Compliance (GRC): Lessons Learned
Takamura, Eduardo
Gomez-Rosa, Carlos
Mangum, Kevin
Wasiak, Fran
[J]. 2014 IEEE AEROSPACE CONFERENCE, 2014,
[2] Patterns for Understanding Control Requirements for Information Systems for Governance, Risk Management, and Compliance (GRC IS)
Wiesche, Manuel
Berwing, Carolin
Schermann, Michael
Krcmar, Helmut
[J]. ADVANCED INFORMATION SYSTEMS ENGINEERING WORKSHOPS, 2011, 83 : 208 - +
[3] The Governance Risk and Compliance (GRC) Model within a Dynamic Business Environment
Pulfer, Roland
Bucovetchi, Olga Maria Cristina
Gheorghe, Adrian V.
[J]. INNOVATION MANAGEMENT AND SUSTAINABLE ECONOMIC COMPETITIVE ADVANTAGE: FROM REGIONAL DEVELOPMENT TO GLOBAL GROWTH, VOLS I - VI, 2015, 2015, : 2651 - 2658
[4] Embedding Governance Risk and Compliance (GRC) Elements in Business Process Modeling
Ritchi, Hamzah
[J]. PROCEEDINGS OF 2017 INTERNATIONAL CONFERENCE ON INFORMATION MANAGEMENT AND TECHNOLOGY (ICIMTECH), 2017, : 100 - 105
[5] Understanding governance, risk and compliance information systems (GRC IS): The experts view
Papazafeiropoulou, Anastasia
Spanaki, Konstantina
[J]. INFORMATION SYSTEMS FRONTIERS, 2016, 18 (06) : 1251 - 1263
[6] Understanding governance, risk and compliance information systems (GRC IS): The experts view
Anastasia Papazafeiropoulou
Konstantina Spanaki
[J]. Information Systems Frontiers, 2016, 18 : 1251 - 1263
[7] Risk management, compliance, and governance for resilient information systems
Schermann, Michael
Krcmar, Helmut
[J]. Lecture Notes in Informatics (LNI), Proceedings - Series of the Gesellschaft fur Informatik (GI), 2010, P-176 : 229 - 230
[8] Alignment of Business Strategy and Information Technology Considering Information Technology Governance, Project Portfolio Control, and Risk Management
Parry, Vincent Kobina Ahene
Lind, Mary L.
[J]. INTERNATIONAL JOURNAL OF INFORMATION TECHNOLOGY PROJECT MANAGEMENT, 2016, 7 (04) : 21 - 37
[9] Risk management, compliance and governance for resistant information systems
Schermann, Michael
Krcmar, Helmut
[J]. INFORMATIK 2010 - Service Science - Neue Perspektiven fur die Informatik, Beitrage der 40. Jahrestagung der Gesellschaft fur Informatik e.V. (GI), 2010, 2 : 229 - 230
[10] Responding to Higher Education Change through the Lens of Governance, Risk Management and Compliance (GRC): the Case of Autonomous Public Universities in Thailand
Thanalerdsopit, Paipan
Meksamoot, Komsak
Chakpitak, Nopasit
Goldsmith, Paul
Yodmongkon, Pitipong
[J]. ASR CHIANG MAI UNIVERSITY JOURNAL OF SOCIAL SCIENCES AND HUMANITIES, 2014, 1 (01): : 39 - 56

← 1 2 3 4 5 →