Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
IS/IT Risk Assessment in the Implementation of a Business Continuity Plan: An integrated approach based on Enterprise Risk Management and Governance of Enterprise IT
Högskolan i Jönköping, Internationella Handelshögskolan, IHH, Informatik. (MSc. IT, Management and Innovation 2013-2015)
2015 (engelsk)Independent thesis Advanced level (degree of Master (Two Years)), 20 poäng / 30 hpOppgave
Abstract [en]

Business continuity is an area of research that ensure continuity of enterprise operations. Business continuity requires knowledge and input from business and IT leaders to assess and manage risks associated with critical business processes to develop a plan that can allow the organization to resume operations. Organizations that have a holistic enterprise risk management approach can better manage business and technology risks. The increasing dependency on technological resources asserts the need to assess business and technology risks to develop business continuity. Nevertheless, governance and enterprise leaders find difficult to determine the scope and impact of risks associated with enterprise operations. In organizational contexts, business continuity planning is perceived as an element of contingency instead of an opportunity for improvement. In addition, there is a lack of academic literature related to the organizational implementation of a business continuity plan. For this reason, there is a need to merge enterprise risk management and governance of enterprise IT views to provide an integrated perspective of business and technological risk in the im-plementation of a business continuity plan.The objective of the study relies on assessing how the implementation of a business continuity plan is conducted, together with its challenges and benefits, to provide insights on the elements that facilitates a business continuity plan implementation. The study focuses on the preparation phase of a business continuity plan, where enterprise risks are identified, evalu-ated and mitigated. The study results are based on a case study performed at a multination retail and manufacturing enterprise in Spain. The results indicates that awareness from the higher governance body and senior management on the dependency that enterprises have developed on IS/IT key resources is a factor that influence how risk management and technology risk is perceived in organizations. This influence how the higher governance body views the need to implement enterprise risk management, governance of enterprise IT and business continuity initiatives. Likewise, the elements facilitating a business continuity imple-mentation are associated with the sponsorship and leadership from organizational actors, the involvement of an external organizational agent that can bring expertise and methodology related to business continuity planning, identification of enterprise critical areas and processes and the creation of business and IT risk scenarios to depict threats to the organization operations and processes. This internal reflection brings challenges and benefits to the or-ganization and both are addressed in the study.The study concludes with the presentation of two high level frameworks that can aid enter-prise leaders to visualize and understand the influence that enterprise risk management and governance of enterprise IT has on the implementation of a business continuity plan and the underlying elements that facilitate a business continuity plan implementation in organizations.

sted, utgiver, år, opplag, sider
2015. , s. 87
Emneord [en]
Enterprise Risk Management, Governance of Enterprise IT, Business Continuity Plan, Risk Assessment, IS Risk, IT Risk.
HSV kategori
Identifikatorer
URN: urn:nbn:se:hj:diva-27618ISRN: JU-IHH-IKA-2-20150012OAI: oai:DiVA.org:hj-27618DiVA, id: diva2:842709
Fag / kurs
IHH, Informatics
Presentation
2015-05-27, B3051, Gjuterigatan 5, Jonkoping, 13:00 (engelsk)
Veileder
Examiner
Tilgjengelig fra: 2015-07-22 Laget: 2015-07-21 Sist oppdatert: 2015-07-22bibliografisk kontrollert

Open Access i DiVA

Cristina Hidalgo JIBS Informatics Master Thesis 2015(1732 kB)1496 nedlastinger
Filinformasjon
Fil FULLTEXT01.pdfFilstørrelse 1732 kBChecksum SHA-512
8e0a7ddef7aea1991f0500d03ea8bdda1a3f1cb053b545f48ffd6e7e75723d7f680e010c62ee8c324c9d59e5119a2713ec1fa3017a8320bbc2f35b5d036549df
Type fulltextMimetype application/pdf

Søk i DiVA

Av forfatter/redaktør
Hidalgo Valdez, Cristina Cecilia
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar
Totalt: 1496 nedlastinger
Antall nedlastinger er summen av alle nedlastinger av alle fulltekster. Det kan for eksempel være tidligere versjoner som er ikke lenger tilgjengelige

urn-nbn

Altmetric

urn-nbn
Totalt: 1710 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf