A risk mitigation decision framework for information technology organizations
Information technology (IT) organizations are faced with various risks such as strategic, operational and technical risks. These risks should be identified, measured and mitigated. Risk mitigation gives an opportunity to IT practitioners and management to compute risks and develop suitable strategie...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Little Lion Scientific R&D
2017
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/64672/ http://psasir.upm.edu.my/id/eprint/64672/1/A%20risk%20mitigation%20decision%20framework%20for%20information%20technology%20organizations.pdf |
| _version_ | 1848855064963186688 |
|---|---|
| author | Che Pa, Noraini Anthony Jnr, Bokolo Jusoh, Yusmadi Yah Nor, Rozi Nor Haizan Mohd Aris, Teh Noranis |
| author_facet | Che Pa, Noraini Anthony Jnr, Bokolo Jusoh, Yusmadi Yah Nor, Rozi Nor Haizan Mohd Aris, Teh Noranis |
| author_sort | Che Pa, Noraini |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Information technology (IT) organizations are faced with various risks such as strategic, operational and technical risks. These risks should be identified, measured and mitigated. Risk mitigation gives an opportunity to IT practitioners and management to compute risks and develop suitable strategies to treat the risk. Risk mitigation in organizations provides a disciplinary environment for decision making to measure and treat potential risk continuously. Existing model and frameworks provides inadequate support to practitioners in making risk decision pertaining risk mitigation. This is due to the fact that existing models or frameworks lacks the capabilities to support practitioners. In order to address this challenge, this research identifies the processes and components of risk mitigation in organization’s and proposes a framework of risk decision for mitigating both technical and operational risk using software agents and knowledge mapping as techniques. Qualitative research was adopted using interview to collect data. A pilot study was carried out to validate the instrument. The case study was later carried out to verify the risk mitigation process and components. Lastly the framework was evaluated using iterative triangulation. |
| first_indexed | 2025-11-15T11:19:50Z |
| format | Article |
| id | upm-64672 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T11:19:50Z |
| publishDate | 2017 |
| publisher | Little Lion Scientific R&D |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-646722018-08-13T03:45:35Z http://psasir.upm.edu.my/id/eprint/64672/ A risk mitigation decision framework for information technology organizations Che Pa, Noraini Anthony Jnr, Bokolo Jusoh, Yusmadi Yah Nor, Rozi Nor Haizan Mohd Aris, Teh Noranis Information technology (IT) organizations are faced with various risks such as strategic, operational and technical risks. These risks should be identified, measured and mitigated. Risk mitigation gives an opportunity to IT practitioners and management to compute risks and develop suitable strategies to treat the risk. Risk mitigation in organizations provides a disciplinary environment for decision making to measure and treat potential risk continuously. Existing model and frameworks provides inadequate support to practitioners in making risk decision pertaining risk mitigation. This is due to the fact that existing models or frameworks lacks the capabilities to support practitioners. In order to address this challenge, this research identifies the processes and components of risk mitigation in organization’s and proposes a framework of risk decision for mitigating both technical and operational risk using software agents and knowledge mapping as techniques. Qualitative research was adopted using interview to collect data. A pilot study was carried out to validate the instrument. The case study was later carried out to verify the risk mitigation process and components. Lastly the framework was evaluated using iterative triangulation. Little Lion Scientific R&D 2017 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/64672/1/A%20risk%20mitigation%20decision%20framework%20for%20information%20technology%20organizations.pdf Che Pa, Noraini and Anthony Jnr, Bokolo and Jusoh, Yusmadi Yah and Nor, Rozi Nor Haizan and Mohd Aris, Teh Noranis (2017) A risk mitigation decision framework for information technology organizations. Journal of Theoretical and Applied Information Technology, 95 (10). pp. 2102-2113. ISSN 1992-8645; ESSN: 1817-3195 http://www.jatit.org/volumes/ninetyfive10.php |
| spellingShingle | Che Pa, Noraini Anthony Jnr, Bokolo Jusoh, Yusmadi Yah Nor, Rozi Nor Haizan Mohd Aris, Teh Noranis A risk mitigation decision framework for information technology organizations |
| title | A risk mitigation decision framework for information technology organizations |
| title_full | A risk mitigation decision framework for information technology organizations |
| title_fullStr | A risk mitigation decision framework for information technology organizations |
| title_full_unstemmed | A risk mitigation decision framework for information technology organizations |
| title_short | A risk mitigation decision framework for information technology organizations |
| title_sort | risk mitigation decision framework for information technology organizations |
| url | http://psasir.upm.edu.my/id/eprint/64672/ http://psasir.upm.edu.my/id/eprint/64672/ http://psasir.upm.edu.my/id/eprint/64672/1/A%20risk%20mitigation%20decision%20framework%20for%20information%20technology%20organizations.pdf |