Skip to main content
SpringerLink
Log in

Gaps Between Theory and Practice on IT Governance Capabilities

  • Conference paper
  • First Online:
Book cover Advances in Information Systems Development

Part of the book series: Lecture Notes in Information Systems and Organisation ((LNISO,volume 26))

Abstract

Nowadays, Information Technology (IT) governance is a core activity either adopted or at least expected by most organizations, to control the behavior of IT assets. However, this discipline faces a growing gap between the views, priorities and practices of academics and practitioners. This paper presents a consolidated view of capabilities for implementing IT governance within an organization. We evaluated such capabilities in the practice of Colombian companies within the logistics industry. The main gaps that arise when adopting IT governance capabilities are discussed, and research insights are provided for aligning theory and practice.

A prior version of this paper has been published in the ISD2017 Proceedings (http://aisel.aisnet.org/isd2014/proceedings2017).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    More than 30,000 publications found in Google Scholar using the query “IT Governance”.

References

  1. Webb, P., Pollard, C., Ridley, G.: Attempting to define IT governance: wisdom or folly? In: Proceedings of the 39th Hawaii International Conference on System Sciences, pp. 1–10. IEEE (2006)

    Google Scholar 

  2. Brown, A., Grant, G.: Framing the frameworks: a review of IT governance research. Commun. Assoc. Inform. Sys. 15, 696–712 (2005)

    Google Scholar 

  3. Weill, P.: Don’t just lead, Govern: how top-performing firms govern IT. MIS Q. Exec. 3(1), 1–17 (2004)

    Google Scholar 

  4. Giraldo O.L., Herrera, A., Gómez, J. E.: IT Governance State of Art at enterprises in the Colombian Pharmaceutical Industry. In: Quintela Varajão J.E., Cruz-Cunha M.M., Putnik G.D., Trigo A. (eds) ENTERprise Information Systems. CENTERIS 2010. CCIS, vol. 109. Springer, Berlin, Heidelberg

    Google Scholar 

  5. Jacobson, D.D.: Revisiting IT governance in the light of institutional theory. In: Proceedings of the 42nd Hawaii International Conference on System Sciences, pp. 1–9. IEEE (2009)

    Google Scholar 

  6. Willson, P., Pollard, C.: Exploring IT governance in theory and practice in a large multi-national organisation in Australia. Inform. Syst. Manage. 26, 98–109 (2009)

    Article  Google Scholar 

  7. Simonsson, M., Ekstedt, M.: Getting the priorities right: literature vs practice on IT governance. In: Technology Management for the Global Future—PICMET 2006 Conference, pp. 18–26. IEEE (2006)

    Google Scholar 

  8. Keyes-Pearce, S.: Rethinking the importance of IT governance in the e-World. In: Proceedings of the 6th Pacific Asia Conference on Information Systems, pp. 256–272. AISeL (2002)

    Google Scholar 

  9. Winkler, T., Brown, C.V.: Horizontal allocation of decision rights for on-premise applications and software-as-a-service. J. Manage. Inform. Syst. 30, 13–48 (2014)

    Article  Google Scholar 

  10. Ko, D., Fink, D.: Information technology governance: an evaluation of the theory-practice gap. Corp. Govern. 10, 662–674 (2010)

    Article  Google Scholar 

  11. Winkler, T., Goebel, C., Benlian, A., Bidault, F., Günther, O.: The impact of software as a service on IS authority—a contingency perspective. In: Proceedings of the 32nd International Conference on Information Systems, pp. 1–17. AISeL (2011)

    Google Scholar 

  12. Yin, R.K.: Case Study Research: Design and Methods. Sage Publications, Thousand Oaks (2008)

    Google Scholar 

  13. Ulrich, W., Rosen, M.: The business capability map: the “rosetta stone” of business/IT alignment. Enterp. Archit. 14 (2011)

    Google Scholar 

  14. Eisenhardt, K.M., Martin, J.A.: Dynamic capabilities: what are they? Strateg. Manage. J. 21, 1105–1121 (2000)

    Article  Google Scholar 

  15. Swauger, J.: Is it time for an IT governance audit? EDPACS 47, 1–6 (2013)

    Article  Google Scholar 

  16. González-Rojas, O., Lesmes, S.: GovernIT: a software for decision-making support on automated IT governance models. In: Information Systems Development: Advances in Methods, Tools and Management (ISD2017 Proceedings), pp. 12. AISeL (2017)

    Google Scholar 

  17. Westerman, G., Hunter, R.: IT Risk: Turning Business Threats Into Competitive Advantage. Harvard Business School Press, Boston, MA, USA (2007)

    Google Scholar 

  18. ISACA: COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. ISACA (2012)

    Google Scholar 

  19. Cervone, F.: ITIL: a framework for managing digital library services. Digit. Libr. Perspect. 24, 87–90 (2008)

    Google Scholar 

  20. Fonstad, N.O., Robertson, D.: Transforming a company, project by project: the IT engagement model. MIS Q. Exec. 5, 1–14 (2006)

    Google Scholar 

  21. Heart, T., Maoz, H., Pliskin, N.: From governance to adaptability: the mediating effect of IT executives’ managerial capabilities. Inform. Syst. Manage. 27, 42–60 (2010)

    Article  Google Scholar 

  22. Gonzalez-Rojas, O., Beltrán, G., Correal, D.: Measurement of current and potential non-financial business value delivery of IT investments. Information 19, 2869–2874 (2016)

    Google Scholar 

  23. Kohnke, A., Shoemaker, D.: Making cybersecurity effective: the five governing principles for implementing practical IT governance and control. EDPACS 52, 9–17 (2015)

    Article  Google Scholar 

  24. ISO: ISO/IEC 38500;2008: Corporate Governance of Information Technology. International Standards Organisation (2008)

    Google Scholar 

  25. Jordan, E.: An integrated IT risk model. In: Proceedings of the 9th Pacific Asia Conference on Information Systems: IT & Value Creation, pp. 632–644. AISeL (2005)

    Google Scholar 

  26. Caralli, R., Stevens, J., Young, L., Wilson, W.: Introducing OCTAVE Allegro: improving the information security risk assessment process (No. CMU/SEI-2007-TR-012) (2007)

    Google Scholar 

  27. Héroux, S., Fortin, A.: Exploring IT dependence and IT governance. Inform. Syst. Manage. 31, 143–166 (2014)

    Article  Google Scholar 

  28. González-Rojas, O.: Governing IT services for quantifying business impact. In: Matulevicius, R., Dumas, M. (eds.) Perspectives in Business Informatics Research. BIR 2015. LNBIP, vol. 229, pp. 97–112. Springer, Cham (2015)

    Google Scholar 

  29. González-Rojas, O., Lesmes, S.: Value at risk within business processes: an automated IT risk governance approach. In: La Rosa, M., Loos, P., and Pastor, O. (eds.) Business Process Management. BPM 2016. LNCS, vol. 9850, pp. 365–380. Springer, Cham (2016)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Systems and Computing Engineering Department, Universidad de los Andes, Bogotá, Colombia

    Oscar González-Rojas & Guillermo Beltrán

  2. Systems Engineering Department, Pontificia Universidad Javeriana, Bogotá, Colombia

    Juan E. Gómez-Morantes

Authors
  1. Oscar González-Rojas
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Juan E. Gómez-Morantes
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Guillermo Beltrán
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Oscar González-Rojas .

Editor information

Editors and Affiliations

  1. School of Sciences, University of Central Lancashire, Larnaca, Cyprus

    Nearchos Paspallis

  2. School of Sciences, University of Central Lancashire, Larnaca, Cyprus

    Marios Raspopoulos

  3. Cairnes School of Business and Economics, National University of Ireland Galway, Galway, Ireland

    Chris Barry

  4. Cairnes School of Business and Economics, National University of Ireland Galway, Galway, Ireland

    Michael Lang

  5. Faculty of Information Technology, Monash University, Melbourne, Australia

    Henry Linger

  6. Department of Information Systems, City University of Hong Kong, Kowloon, Hong Kong

    Christoph Schneider

Rights and permissions

Reprints and permissions

Copyright information

© 2018 Springer International Publishing AG, part of Springer Nature

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

González-Rojas, O., Gómez-Morantes, J.E., Beltrán, G. (2018). Gaps Between Theory and Practice on IT Governance Capabilities. In: Paspallis, N., Raspopoulos, M., Barry, C., Lang, M., Linger, H., Schneider, C. (eds) Advances in Information Systems Development. Lecture Notes in Information Systems and Organisation, vol 26. Springer, Cham. https://doi.org/10.1007/978-3-319-74817-7_9

Download citation

Publish with us

Policies and ethics

Search

Navigation