Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
IS/IT Risk Assessment in the Implementation of a Business Continuity Plan: An integrated approach based on Enterprise Risk Management and Governance of Enterprise IT
Högskolan i Jönköping, Internationella Handelshögskolan, IHH, Informatik. (MSc. IT, Management and Innovation 2013-2015)
2015 (Engelska)Självständigt arbete på avancerad nivå (masterexamen), 20 poäng / 30 hpStudentuppsats (Examensarbete)
Abstract [en]

Business continuity is an area of research that ensure continuity of enterprise operations. Business continuity requires knowledge and input from business and IT leaders to assess and manage risks associated with critical business processes to develop a plan that can allow the organization to resume operations. Organizations that have a holistic enterprise risk management approach can better manage business and technology risks. The increasing dependency on technological resources asserts the need to assess business and technology risks to develop business continuity. Nevertheless, governance and enterprise leaders find difficult to determine the scope and impact of risks associated with enterprise operations. In organizational contexts, business continuity planning is perceived as an element of contingency instead of an opportunity for improvement. In addition, there is a lack of academic literature related to the organizational implementation of a business continuity plan. For this reason, there is a need to merge enterprise risk management and governance of enterprise IT views to provide an integrated perspective of business and technological risk in the im-plementation of a business continuity plan.The objective of the study relies on assessing how the implementation of a business continuity plan is conducted, together with its challenges and benefits, to provide insights on the elements that facilitates a business continuity plan implementation. The study focuses on the preparation phase of a business continuity plan, where enterprise risks are identified, evalu-ated and mitigated. The study results are based on a case study performed at a multination retail and manufacturing enterprise in Spain. The results indicates that awareness from the higher governance body and senior management on the dependency that enterprises have developed on IS/IT key resources is a factor that influence how risk management and technology risk is perceived in organizations. This influence how the higher governance body views the need to implement enterprise risk management, governance of enterprise IT and business continuity initiatives. Likewise, the elements facilitating a business continuity imple-mentation are associated with the sponsorship and leadership from organizational actors, the involvement of an external organizational agent that can bring expertise and methodology related to business continuity planning, identification of enterprise critical areas and processes and the creation of business and IT risk scenarios to depict threats to the organization operations and processes. This internal reflection brings challenges and benefits to the or-ganization and both are addressed in the study.The study concludes with the presentation of two high level frameworks that can aid enter-prise leaders to visualize and understand the influence that enterprise risk management and governance of enterprise IT has on the implementation of a business continuity plan and the underlying elements that facilitate a business continuity plan implementation in organizations.

Ort, förlag, år, upplaga, sidor
2015. , s. 87
Nyckelord [en]
Enterprise Risk Management, Governance of Enterprise IT, Business Continuity Plan, Risk Assessment, IS Risk, IT Risk.
Nationell ämneskategori
Systemvetenskap, informationssystem och informatik med samhällsvetenskaplig inriktning
Identifikatorer
URN: urn:nbn:se:hj:diva-27618ISRN: JU-IHH-IKA-2-20150012OAI: oai:DiVA.org:hj-27618DiVA, id: diva2:842709
Ämne / kurs
IHH, Informatik
Presentation
2015-05-27, B3051, Gjuterigatan 5, Jonkoping, 13:00 (Engelska)
Handledare
Examinatorer
Tillgänglig från: 2015-07-22 Skapad: 2015-07-21 Senast uppdaterad: 2015-07-22Bibliografiskt granskad

Open Access i DiVA

Cristina Hidalgo JIBS Informatics Master Thesis 2015(1732 kB)1496 nedladdningar
Filinformation
Filnamn FULLTEXT01.pdfFilstorlek 1732 kBChecksumma SHA-512
8e0a7ddef7aea1991f0500d03ea8bdda1a3f1cb053b545f48ffd6e7e75723d7f680e010c62ee8c324c9d59e5119a2713ec1fa3017a8320bbc2f35b5d036549df
Typ fulltextMimetyp application/pdf

Sök vidare i DiVA

Av författaren/redaktören
Hidalgo Valdez, Cristina Cecilia
Av organisationen
IHH, Informatik
Systemvetenskap, informationssystem och informatik med samhällsvetenskaplig inriktning

Sök vidare utanför DiVA

GoogleGoogle Scholar
Totalt: 1496 nedladdningar
Antalet nedladdningar är summan av nedladdningar för alla fulltexter. Det kan inkludera t.ex tidigare versioner som nu inte längre är tillgängliga.

urn-nbn

Altmetricpoäng

urn-nbn
Totalt: 1710 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf