A Study on the Scheme of Information System Audit for Institute of Knowledge Information

지식정보 관리기관을 위한 정보시스템 감리 추진방안에 관한 연구

  • 이상준 (전남대학교 경영학과 BK21 (N)비즈 컨버전스사업단) ;
  • 나종회 (광주대학교 e-비즈니스학부) ;
  • 고형대 (목포대학교 정보공학부) ;
  • 신기정 (한국과학기술정보연구원 지식포털팀)
  • Published : 2006.12.31

Abstract

With the growth and maturation of IT industry, the necessity of audit about development, maintenance and management of high-quality information system is gradually increasing. In addition, the necessity of inner auditing system, which could totally verify and evaluate the effectiveness of project according to the characteristics of organization conducting information-oriented business, also being proposed. Government offices including Korea Institute of Science and Technology(KISTI) collectively controlling nationwide science-technology related information have no guiding principle or organization within themselves even though performing information-oriented businesses are becoming more bigger and complicated. In this paper, we propose scheme for devising framework, which can audit construction and operation of knowledge information, check list and guideline. In addition, we present concrete ways for adapting these schemes to institutes which manage science-technology knowledge information. Audit framework consists of points of time in audit, audit domain and audit criterion. Points of time in audit are defined as three phases as followings: pre-audit, in-progress audit and post-audit. Audit domain includes 16 detail audit domains and especially we set 11 check items and 40 detail investigation items for database implementation business. We expect that management level of science-technology implementation business of organizations using this research result will increase and they could offer high-quality information service.

References

  1. 김용경, 김필중, '정보시스템 감리가 소프트 웨어 품질에 미치는 영향', Journal of Information Technology Application & Management , 제9권, 제4호(2002), pp.79-101
  2. 김현수, 정보시스템 진단과 감리, 법영사, 2002
  3. 정보통신부, 정보시스템 감리기준(고시 제1999- 104호), 1999
  4. 정보통신부, 정보시스템 감리기준(고시 제2004- 72호), 2004
  5. 정보통신부, 정보시스템의 효율적 도입 및 운영 등에 관한 법률, 2006
  6. 정보통신부, 지식정보자원관리사업 본격 착 수, 정보통신부 보도자료, 2006
  7. 한국과학기술정보연구원, KISTI 정보시스템 감리추진방안에 관한 연구, 2006
  8. 한국전산원, 해외정보시스템감리 유사제도 비교 연구, 2004
  9. 한국전산원, 정보시스템감리 감리제도 연구, 2004
  10. 한국정보통신기술협회, 정보기술 아키텍처 - 개념모델(정보통신단체표준, TTAS.KO-10.0117, 2000)
  11. ISACA, COBIT 4.0, http://www.isaca.org/
  12. ISO, ISO/IEC 9126, Information Technology - Software quality characteristics and metrics, 1998
  13. ISO, ISO/IEC 11179, Information Technology - Metadata Registries, 2004
  14. ISO, ISO/IEC 12207, ISO/IEC 12207 Standard for Information Technology - Software Life Cycle Processes, ISO/IEC JTC /SC7, March, 2002
  15. ISO, ISO/IEC 15504, Information Technology - Software Process Assessment, 2004
  16. PMI, PMBOK Guide, Newtown Square, Pennsylvania USA, 2000
  17. SEI, Capability Maturity Model Integration, 2002