Abstract | ||
---|---|---|
As Information Technology (IT) has become increasingly important to the competitive position of firms, managers have grown more sensitive to their organization's overall IT risk management. Recent publicity concerning losses incurred by companies because of problems with their sophisticated information systems has focused attention on the importance of these systems to the organization. In an attempt to minimize or avoid such losses, managers are employing various qualitative and quantitative risk analysis methodologies. The risk analysis literature, however, suggests that these managers typically utilize a single methodology, not a combination of methodologies. This paper proposes a risk analysis process that employs a combination of qualitative and quantitative methodologies. This process should provide managers with a better approximation of their organization's overall information technology risk posture. Practicing managers can use this proposed process as a guideline in formulating new risk analysis procedures and/or evaluating their current risk analysis procedures. |
Year | Venue | Keywords |
---|---|---|
1991 | J. of Management Information Systems | quantitative methodology,risk analysis process,risk analysis literature,sophisticated information system,quantitative risk analysis methodology,overall information technology risk,current risk analysis procedure,proposed process,overall IT risk management,new risk analysis procedure |
Field | DocType | Volume |
Risk analysis (business),Computer science,Information technology,Knowledge management,Risk management,IT risk management | Journal | 8 |
Issue | Citations | PageRank |
1 | 67 | 6.51 |
References | Authors | |
8 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Rex Kelly Rainer, Jr. | 1 | 81 | 7.87 |
Charles A. Snyder | 2 | 250 | 24.09 |
Houston H. Carr | 3 | 401 | 63.21 |