Skip to main content
ICT risk management in organizations: Case studies in Thai business
Australasian Conference on Information Systems (2008)
  • Siridech Kumsuprom, RMIT University
  • Brian Corbitt, RMIT University
  • Siddhi Pittayachawan, RMIT University
Risks related to information communication and technologies (ICTs) still occur in organizations. In spite of development of ICT risk management methodologies that have been published in numerous frameworks and/or standards to help organizations deal with ICT risks, it has still been questioned about whether or not its methodology has manifested success. This research identifies the current profile of ICT risk management planning and investigates success in implementation in Thai organizations of both the Control Objectives for the Information and related Technology (COBIT) framework and the ISO/IEC 17799 standard for dealing with ICT risk management. The findings from three case studies indicate that successful ICT risk management planning focuses on the collaboration between the management level activities and the operational level activities in order to cope with ICT risks successfully.
Publication Date
December 3, 2008
Christchurch, New Zealand
Citation Information
Siridech Kumsuprom, Brian Corbitt and Siddhi Pittayachawan. "ICT risk management in organizations: Case studies in Thai business" Australasian Conference on Information Systems (2008)
Available at: