Skip to main content
Presentation
ICT Risk Management in Organizations: Case studies in Thai Business
ACIS 2008 Proceedings
  • Siridech Kumsuprom, School of Business Information System, RMIT University Melbourne Australia
  • Brian Corbitt, School of Business Information System, RMIT University Melbourne Australia
  • Siddhi Pittayachawan, School of Business Information System, RMIT University Melbourne Australia
Publication Date
1-1-2008
Abstract

Risks related to information communication and technologies (ICTs) still occur in organizations. In spite of development of ICT risk management methodologies that have been published in numerous frameworks and/or standards to help organizations deal with ICT risks, it has still been questioned about whether or not its methodology has manifested success. This research identifies the current profile of ICT risk management planning and investigates success in implementation in Thai organizations of both the Control Objectives for the Information and related Technology (COBIT) framework and the ISO/IEC 17799 standard for dealing with ICT risk management. The findings from three case studies indicate that successful ICT risk management planning focuses on the collaboration between the management level activities and the operational level activities in order to cope with ICT risks successfully.

Citation Information
Siridech Kumsuprom, Brian Corbitt and Siddhi Pittayachawan. "ICT Risk Management in Organizations: Case studies in Thai Business" (2008)
Available at: http://works.bepress.com/siddhi/5/