• Title, Summary, Keyword: Operation Audit

Search Result 75, Processing Time 0.036 seconds

An Information System Audit Model for IT Outsourcing Operation (IT 아웃소싱 운영을 위한 정보시스템 운영감리 모형)

  • Kim, Hee-Wan;Jung, Jun;Kim, Dong-Soo;Rhee, Hae-Kyung;Han, Ki-Joon
    • Journal of Digital Convergence
    • /
    • v.10 no.11
    • /
    • pp.185-196
    • /
    • 2012
  • Information system operation principles were recently established in order to provide high quality service and efficient operation audit of IT outsourcing. Operation managements are done based on these principles. Therefore, information operating management process, which refers to itself, is established. Information system operation audit requires a constant audit regularly, which is different from construction/development audit that is done only once. As operating management process changes, operation audit guidelines should be updated and improved. Therefore, this paper proposes IT outsourcing operation audit model with IT outsourcing achievement management as a focus. IT service domain was referred in order to propose information system operation audit model and check lists, which are based on IT outsourcing operation managements such as planning, making strategies, contract, service, and management. The deduced audit model and check lists verified suitability of the proposed model by experts' survey.

A Study on the Improvement method of the Operation Audit Through Information System Check Method (정보시스템 체크 방법을 통한 운영 감리 개선 방안 연구)

  • Kim, Jeong-Joon;Kwak, Kwang-Jin;Lee, Don-Hee;Lee, Yong-Soo
    • The Journal of The Institute of Internet, Broadcasting and Communication
    • /
    • v.16 no.6
    • /
    • pp.277-285
    • /
    • 2016
  • This paper aimed at contributing to the improvement of objectivity and reliability of operating audit, quantitative audit result, being able to comparing with best practice and past operating status, through providing quantitative operation check sheet. Quantitative operation check sheet is comprised of thirteen basic check sheet area. The auditors evaluate the current operation status level with basis of basic check sheet area. It is hoped that this thesis on a quantitative operation check sheet for the Improvement of the operation Audit will become the basis for the applicaton and effectiveness of an operation audit that not only the improvement of the quality of information system audit but also usability of operation audit.

A Design of University Information System Operation Audit Model based on ITIL V3

  • Kim, Hee-Wan;Kang, Bo-Ra;Kim, Dong-Soo;Moon, Song-Chul
    • Journal of Information Technology Applications and Management
    • /
    • v.25 no.3
    • /
    • pp.29-41
    • /
    • 2018
  • The purpose of constructing university information system is for improvement in diversification and throughput of information, streamlines business processes, rapid exchange of information, sharing of information, decision-making information, and securing educational facilities. Similar to business information technology system, university information system does not have a review system for sharing and overlapping investment of information. Due to the lack of project management for outsourcing and vulnerability of system suitability, system audit is absolutely needed for the university information system. This paper especially focuses on an operational phase in the audit of university information system. Additionally, we proposed operating model and checklists of the university information system based on Management Guidelines of ITIL V3 Operational and Information System. We derived the checklists of operation audit by each domain of service strategy, service design, service transition, service operation, and continual service improvement. As the result, this study appear to have more than average satisfaction the suitability results were.

Study on the Improvement of the Integrated Railway Safety Audit System in KOREA (우리나라 철도종합안전심사체계 개선에 관한 연구)

  • Yun, Gyeong-Cheol;Lee, Won-Young
    • Proceedings of the KSR Conference
    • /
    • /
    • pp.2225-2234
    • /
    • 2011
  • According to Railway Safety Act, Korea Transportation Safety Authority (KOTSA) has been entrusted with 'Integrated Railway Safety Audit (IRSA) and has implemented the safety audit to the Railway operation agencies such as Korea Railway (KORAIL) and the Railway facility management organization such as the Korea Rail Network Authority (KR Network). The target of IRSA is to establish the effective rail safety management system and to raise the safety level of the Railway operation and facility agencies by checking synthetically their performance of safety duties with sincerity according to the Railway Safety Act. Even though newly introduced IRSA is conducted smoothly, it is necessary to study the methodology and criteria of the state's safety audit system. The purpose of this paper is to improve the efficiency of IRSA by the comparative research between IRSA and other similar safety audit system and to establish the consecutive improvement concept of IRSA. Second purpose is to confirm the effectiveness of IRSA by the analysis of the relationship between audit results and the safety level of the rail operation agencies.

  • PDF

An improvement plan of information system operational audit for database operational management based on data quality (데이터 품질에 기반을 둔 데이터베이스 운영관리를 위한 정보시스템 운영감리 개선 방안)

  • Jang, WonJae;Kim, Dongsoo;Min, Dukki
    • Journal of Service Research and Studies
    • /
    • v.8 no.2
    • /
    • pp.41-65
    • /
    • 2018
  • With the dawn of society where individuals or enterprises based on data generate infinite profits, the significance of database operation management is growing centering on data quality. However, there are not many South Korean public or private entities managing them systematically. Against this backdrop, this study sought to investigate the current status and problems and explore how to improve from the perspective of auditors. To implement this study, audit checklist was improved and, based on it, auditors and IT experts were surveyed. The final data were analyzed to test the study hypotheses empirically. As a result of the analysis, it was found that the auditors had been highly satisfied with all of the items on the improved audit checklist for data quality-based database operation management. Moreover, non-auditors were also found to regard them within their acceptable range. This study is expected to help improve information system operation audit and enterprises data operation management.

The Investigation of the Overseas Audit Systems for the Improvement of the Integrated Railroad Safety Audit System (철도종합안전심사제도 개선을 위한 해외 심사제도 분석)

  • Oh, In-Tack;Lee, Jong-Seock
    • Proceedings of the KSR Conference
    • /
    • /
    • pp.719-728
    • /
    • 2007
  • Recently the assurance of railroad safety is very important issue in KOREA because there are lots of changes in the railroad industries. The Railway Safety Act was established in order to cope with these changes effectively and prevent the railroad transportation accidents. According to this law, Korea Transportation Safety Authority (KOTSA) has been entrusted with 'Integrated Railroad Safety Audit (IRSA)' and has implemented the safety audit to the railroad operation agencies such as Korea Railroad (KORAIL) and the railroad facility management organization such as the Korea Rail Network Authority (KR Network). The target of IRSA is to establish the effective rail safety management system and to raise the safety level of the railroad operation and facility agencies by checking synthetically their performance of safety duties with sincerity according to the Railway Safety Act. The purpose of this paper is to improve the efficiency of IRSA by the comparative research between IRSA and other similar safety audit system. To study the efficiency of IRSA, we investigated the rail safety audit systems of EU system specially France, England where the big changes have happened for the rail operation concepts and Japan where government entity control the railroad safety. The international standards of Occupational Health & Safety Assessment Series (OHSAS 18001), Quality Management System (ISO 9001) and Guidelines for Quality and/or Environmental Management Systems Auditing (ISO 19011) are investigated.

  • PDF

A Study on the Method Improvement of the Integrated Railway Safety Audit System through the Analysis of Results (철도종합안전심사 결과 분석을 통한 효율적 심사방안 연구)

  • Song, Bo-Young;Song, Byeong-Ho;Oh, In-Tack
    • Proceedings of the KSR Conference
    • /
    • /
    • pp.2503-2516
    • /
    • 2011
  • According to Railway Safety Act, Korea Transportation Safety Authority (KOTSA) has been entrusted with 'Integrated Railroad Safety Audit (IRSA) and has implemented the safety audit to the railroad operation agencies such as Korea Railroad (KORAIL) and the railroad facility management organization such as the Korea Rail Network Authority (KR Network). The target of IRSA is to establish the effective rail safety management system and to raise the safety level of the railroad operation and facility agencies by checking synthetically their performance of safety duties with sincerity according to the Railway Safety Act. Even though newly introduced IRSA is conducted smoothly, it is necessary to study the methodology and criteria of the state's safety audit system. The purpose of this paper is to improve the efficiency of IRSA by the comparative research between IRSA and other similar safety audit system and to establish the consecutive improvement concept of IRSA. Second purpose is to confirm the effectiveness of IRSA by the analysis of the relationship between audit results and the safety level of the rail operation agencies.

  • PDF

A Study on the Scheme of Information System Audit for Institute of Knowledge Information (지식정보 관리기관을 위한 정보시스템 감리 추진방안에 관한 연구)

  • Lee, Sang-Jun;Ra, Jong-Hei;Go, Hyung-Dae;Shin, Ki-Jung
    • Journal of Information Technology Services
    • /
    • v.5 no.3
    • /
    • pp.121-135
    • /
    • 2006
  • With the growth and maturation of IT industry, the necessity of audit about development, maintenance and management of high-quality information system is gradually increasing. In addition, the necessity of inner auditing system, which could totally verify and evaluate the effectiveness of project according to the characteristics of organization conducting information-oriented business, also being proposed. Government offices including Korea Institute of Science and Technology(KISTI) collectively controlling nationwide science-technology related information have no guiding principle or organization within themselves even though performing information-oriented businesses are becoming more bigger and complicated. In this paper, we propose scheme for devising framework, which can audit construction and operation of knowledge information, check list and guideline. In addition, we present concrete ways for adapting these schemes to institutes which manage science-technology knowledge information. Audit framework consists of points of time in audit, audit domain and audit criterion. Points of time in audit are defined as three phases as followings: pre-audit, in-progress audit and post-audit. Audit domain includes 16 detail audit domains and especially we set 11 check items and 40 detail investigation items for database implementation business. We expect that management level of science-technology implementation business of organizations using this research result will increase and they could offer high-quality information service.

Audit Method Design and Performance Evaluation for Connection Information in ATM Switch (ATM 교환기에서 연결 정보에 대한 감사 기능 제공 방안 및 성능 평가)

  • 유영일;전병실
    • Journal of the Institute of Electronics Engineers of Korea TC
    • /
    • v.40 no.11
    • /
    • pp.27-33
    • /
    • 2003
  • This paper proposes the efficient audit method for the distributed connection information in ATM switch. Based on this method, we design the periodic audit function by a system and immediate audit function by a operator's order. We evaluate the performance about the proposed Audit method. At the result of evaluation, We figure out that the load of call control processor is almost independent of a system load regardless of audit function operation. Therefore, we confirm that the proposed audit method nearly have an effect on the load of call control processor. The proposed audit method can reestablish a Mismatched connection information with a little load.

Design and Implementation of SQL Inspector for Database Audit Using ANTLR (ANTLR를 사용한 데이터베이스 감리용 SQL 검사기의 설계 및 구현)

  • Liu, Chen;Kim, Taewoo;Zheng, Baowei;Yeo, Jeongmo
    • KIPS Transactions on Software and Data Engineering
    • /
    • v.5 no.9
    • /
    • pp.425-432
    • /
    • 2016
  • As the importance of information audit is getting bigger, the public corporations invest many expenses at information system audit to build a high quality system. For this purpose, there are much research to proceed an audit effectively. In database audit works, it could audit utilizing a variety of monitoring tools. However, when auditing SQLs which might be affected to database performance, there are several limits related to SQL audit functionality. For this reason, most existing monitoring tools process based on meta information, it is difficult to proceed SQL audit works if there is no meta data or inaccuracy. Also, it can't detect problems by analysis of SQL's syntax structure. In this paper, we design and implement the SQL Inspector using ANTLR which is applied by syntax analysis technique. The overall conclusion is that the implemented SQL Inspector can work effectively much more than eye-checked way. Finally, The SQL inspector which we proposed can apply much more audit rules by compared with other monitoring tools. We expect the higher stability of information system to apply SQL Inspector from development phase to the operation phase.