Abstract
In addition to architecture and IT portfolio management, IT risk is often mentioned as the third aspect that needs consideration when governing the application of IT such that it optimally fits in with an organization’s requirements (Dhillon et al [6]). This article investigates the degree of awareness with respect to IT risks and the measures that are taken to reduce these risks in nine large Dutch organizations. The study shows that IT users in these large organizations, faced with the question which risk they consider the most serious one, all mention the lack of agility of their IT. Regarding the measures that are taken for limiting risks, one may conclude that these large organizations often have not organized IT risk management as a separate function that reports directly to the senior management.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Accenture: Managing Risk for High Performance in Extraordinary Times: Report on the Accenture 2009 Global Risk Management Study (2009), www.accenture.com
Applegate, L.M., et al.: Corporate information strategy and management, text and cases, 8th edn. Irwin/McGrawhill, New York (2008)
Bahli, B., et al.: An Assessment of Information technology outsourcing risk. In: Proceedings of ICIS 2001 (2001)
van den Broek, J., et al.: Omgaan met IT risico, Eindhoven. Fontys IT governance serie (2009)
Daily stat: IT risk and company management. Harvard Business Publishing (July 16, 2009)
Dhillon, G., Coos, D., Paton, D.: Chapter 11: Strategic IT/IS Leadership and IT governance. In: Grant, K., Hackney, R., Edgar, D. (eds.) Strategic Information systems management. Cenacge learning, Andover (2010)
ISO: the 27000 series of norms (2008), http://www.27000.org/index.htm
Meijer, J.: Risico management binnen een ontwikkel- en beheerafdeling. Scriptie Open Universiteit, Heerlen (2007)
Overbeek, P., Lindgren de Roos, E.R., Spruit, M.: Informatiebeveiliging onder controle, 4th edn. Prentice Hall/Pearson education, Amsterdam (2008)
Romney, M.B., Steinbart, P.J.: Accounting Information Systems. Pearson Education, Amsterdam (2008)
Starreveld, van Leeuwen, van Nimwegen: Bestuurlijke Informatieverzorging, deel 1: Algemene grondslagen, 5th edn. Stenfert/Kroese, Groningen (2003)
Thiadens, T.J.G.: Method of research. Fontys university of applied sciences, Eindhoven (2010), http://www.ict-management.com/eng/beheer/Fontys%20onderzoek.htm
Westerman, G., Hunter, R.: IT risk, turning business threats into competitive advantage. Harvard Business School press, Boston (2007)
de Wijs, C.: Information systems management in complex organizations. De Wijs, Voorburg (1995)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Thiadens, T., Hamers, R., van den Broek, J., van Laar, S., Coenders, G. (2010). Dealing with IT Risk in Nine Major Dutch Organizations. In: Harmsen, F., Proper, E., Schalkwijk, F., Barjis, J., Overbeek, S. (eds) Practice-Driven Research on Enterprise Transformation. PRET 2010. Lecture Notes in Business Information Processing, vol 69. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16770-6_8
Download citation
DOI: https://doi.org/10.1007/978-3-642-16770-6_8
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16769-0
Online ISBN: 978-3-642-16770-6
eBook Packages: Computer ScienceComputer Science (R0)