A Maturity Model for the Management of Information Technology Risk
Information Technology (IT) systems are at risk from malicious actions, man-made and natural disasters, or inadvertent errors made by users of these systems. Over the past few decades, IT applications have become more susceptible to these risks because of the wide spread usage of computers, the interconnectivity of these computers, and rapid development of Internet applications. Organizations may start with an ad hock approach to dealing with risk management of their IT applications. Some might consider moving into the direction of formalizing their approach to risk management. It is of great benefit for these organizations to have a model that help them assess their standing with respect to risk management in terms of its comprehensiveness, structure, and completeness. In this paper we describe a comprehensive IT Risk Management Maturity Model. This objective is accomplished by integrating widely recognized IT risk management models with similarly widely recognized maturity models.
||Information Technology, Maturity Model, Risk Management
International Journal of Technology, Knowledge and Society, Volume 7, Issue 1, pp.13-26.
Article: Print (Spiral Bound).
Article: Electronic (PDF File; 798.601KB).
Professor, Department of Computer Information Systems, College of Business, Eastern Michigan University, Ypsilanti, Michigan, USA
Badie Farah is Professor of Computer Information Systems at the College of Business, Eastern Michigan University. Prior to joining Eastern Michigan University he was a member of the faculty at Oakland University and a senior staff analyst at The General Motors Corporation. Dr. Farah received his Ph.D. in Industrial and Systems Engineering from the Ohio State University 1977. His research on Data Communications, Information Systems Development, E-Commerce, and Computer assisted Manufacturing has been published in the Journals of Computer Information Systems, Education for Information, Information and Management, Intelligent and Robotic Systems, and Education for Business. Dr. Farah authored two text books and coauthored a third. His books were published by Prentice-Hall, Simon and Schuster, and Ginn Press. He also authored chapters in several books. As a consultant to private and public organizations and Businesses he has focused on Analysis, Development, Implementation, and performance of Information Systems solution to a variety of problems. His clients have included Columbia Gas Services, the Ohio State University, and the American Broadcasting Corporation. He teaches classes in Information Systems Project Management, Information Systems Development, Data Communications, Systems Analysis and Design, and Management of Information Technology. Dr. Farah is a member of Beta gamma Sigma, Alpha Pi Mu, and Phi Kappa Phi honor societies. He has been listed in Marquis Who’s Who in America, Who’s Who in the World, Who’s Who in Education, and Who’s Who in Science and Technology.
There are currently no reviews of this product.
Write a Review