|
|
|
|
||||
|
||||
Developing a Common Language About IT Risk ManagementGeorge F. WestermanMassachusetts Institute of Technology (MIT) - Center for Information Systems Research (CISR) Richard Hunteraffiliation not provided to SSRN June 1, 2009 MIT Sloan Research Paper No. 4933-11 Abstract: Although IT risks can have wide-ranging business consequences, few executives feel comfortable discussing IT risk management. It doesn’t have to be this way. Executive-level tradeoffs around IT risk are managerial, not technical. The Four A Framework of Availability, Access, Accuracy, and Agility risks provides a common language that business and IT managers can use to manage IT risks without getting bogged down in technical complexity. Then you can build a risk management capability — by improving the IT foundation, installing a risk governance process, and creating a risk aware culture — that increases the returns from your IT risk management investments.
Number of Pages in PDF File: 15 Keywords: IT risk, Non-IT executive viewpoint, IT governance, alignment, oversight, risk aware culture, architecture, business continuity, security, agility, regulatory compliance, privacy working papers seriesDate posted: January 10, 2012Suggested CitationContact Information
|
|
|||||||||||||||||||
© 2013 Social Science Electronic Publishing, Inc. All Rights Reserved.
FAQ
Terms of Use
Privacy Policy
Copyright
This page was processed by apollo7 in 0.453 seconds
