scholarly journals The research regarding an information system risk management process characteristics

2007 ◽  
Vol 14D (3) ◽  
pp. 303-310
Author(s):  
Tai-Dal Kim ◽  
Hyung-Won Lee
Keyword(s):  
Information System ◽  
Risk Management ◽  
Management Process ◽  
Process Characteristics ◽  
Risk Management Process ◽  
System Risk

scholarly journals Information Systems Risk Management: Litterature Review

2019 ◽  
Vol 12 (3) ◽  
pp. 1
Author(s):  
Soumaya Amraoui ◽  
Mina Elmaallam ◽  
Hicham Bensaid ◽  
Abdelaziz Kriouile
Keyword(s):  
Decision Making ◽  
Information System ◽  
Risk Management ◽  
Literature Review ◽  
Optimal Allocation ◽  
Management Process ◽  
Business Risk ◽  
Risk Management Process ◽  
A Company ◽  
Comparative Analyse

The security of a company's information system (IS) is an important requirement for the pursuit of its business. Risk management contributes to the protection of the IS assets. It saves the organism from the losses caused by the emergence of unwanted events having an incidence on the IS objectives and consequently on its strategy. It has also an important role in the decision making about entering new opportunities. In addition, it promises an optimal allocation of information system resources. The risk management process aims to analyze what can happen and what are the eventual consequences for the organization before deciding what needs to be done and reducing the risks to an acceptable level. This paper presents a literature review of IS risk management and gives a comparative analyse of its processes, methods and standards.

FORMALIZED DESCRIPTION OF THE PROCEDURE OF INFORMATION SYSTEM RISK MANAGEMENT

2018 ◽  
pp. 61-70
Author(s):  
Svetlana Sergeevna Kozunova ◽  
Alla Grigorievna Kravets
Keyword(s):  
Information System ◽  
Risk Management ◽  
Negative Consequences ◽  
Management Procedure ◽  
System Risk ◽  
Weak Points ◽  
Formalized Description ◽  
Relationship Of ◽  
The Relationship ◽  
Further Development

The article highlights the aspects of risk management in the information system. According to the analysis of the work of Russian and foreign scientists and world practices in the field of risk management, it is stated that there is a need to improve the effectiveness of risk management of information system and to develop a method for managing the risks of the information system. As a solution to the problem of effective risk management of the information system, there has been proposed a formalized procedure for managing the risks of the information system. The scientific novelty of this solution is the use of decision space and optimization space to reduce risks. This procedure allows to assess the damage, risk and effectiveness of risk management of the information system. The risks of the information system are determined and analyzed; a pyramidal risk diagram is developed. This diagram allows you to describe the relationship of risks with the components of the information system. The negative consequences to which these risks can lead are given. The analysis of methods and approaches to risk management has been carried out. Based on the results of the analysis, the methods GRAMM, CORAS, GOST R ISO / IEC scored to the maximum. The weak points of these methods and the difficulty of applying these methods in practice are described. The developed formalized risk management procedure to control the risks of information system can be used as management system’s element of the information security quality that complies with the recommendations of GOST R ISO / IEC 27003-2012. The prospect of further development of the research results is the development of management systems of risk of information system.

Customisable framework for project risk management

2017 ◽  
Vol 17 (1) ◽  
pp. 68-89 ◽  
Author(s):  
Jennifer Firmenich
Keyword(s):  
Risk Management ◽  
Management Practices ◽  
New Institutional Economics ◽  
Future Research ◽  
Project Risk Management ◽  
Management Process ◽  
Project Risk ◽  
Content Type ◽  
Risk Management Process ◽  
Management Concepts

Purpose The purpose of this paper is to emphasise on the need for efficient and effective project risk management practices and to support project managers in increasing the cost certainty of projects by proposing a new framework for project risk management. Design/methodology/approach The author adopts a “constructivist” methodology, drawing on practices common in construction management sciences and new institutional economics. Findings The author presents a holistic and customisable project risk management framework that is grounded in both practice and academia. The framework is holistic because, amongst others, all steps of the typical risk management process are addressed. The framework is customisable, because it allows for alternative ways of implementing the project risk management steps depending on the project-specific circumstances. Research limitations/implications The framework does not address the potential unwillingness of the project players to set up a project risk management process, at all. The proposed framework has not yet been tested empirically. Future research will seek to validate the framework. Originality/value The framework is designed to account for the difficult circumstances of a complex construction project. It is intended to support decision makers in customising a practical yet comprehensive project risk management concept to the characteristics of the unique project. Although many other project risk management concepts are designed based on the assumption that actors are perfectly rational and informed, this framework’s design is based on the opposite assumption. The framework is dynamic and should adapt over time.

Risk Management Process

2006 ◽  
pp. 18-40
Author(s):  
C. Ravindranath Pandian
Keyword(s):  
Risk Management ◽  
Management Process ◽  
Risk Management Process
Sign in / Sign up

Export Citation Format

Share Document