• Journal of Information Technology Services
• /
• v.4 no.1
• /
• pp.129-139
• /
• 2005

This paper proposes a framework of Operational Risk-based Business Continuity System(ORBCS), and develops protection system for operational risk through operational risk assessment and loss distribution approach based on risk management guideline announced in the basel II. In order to find out financial operational risk, business processes of domestic bank are assorted by seven event factors and eight business activities so that we can construct the system. After we find out KRI(Key Risk Indicator) index, tasks and risks, we calculated risk possibility and expected cost by analyzing quantitative data, questionnaire and qualitative approach for AHP model from the past events. Furthermore, we can assume unexpected cost loss by using loss distribution approach presented in the basel II. Each bank can also assume expected loss distributions of operational risk by seven event factors and eight business activities. In this research, we choose loss distribution approach so that we can calculate operational risk. In order to explain number of case happened, we choose poisson distribution, log-normal distribution for loss cost, and estimate model for Monte-Carlo simulation. Through this process which is measured by operational risk. of ABC bank, we find out that loss distribution approach explains closer unexpected cost directly compared than internal measurement approach, and makes less unexpected cost loss.

• Journal of Information Technology Applications and Management
• /
• v.14 no.3
• /
• pp.95-113
• /
• 2007

To minimize IT operational risks and the opportunity cost for lost business hours. it is necessary to have preparedness in advance and mitigation activities for minimization of a loss due to the business discontinuity. There are few cases that banks have a policy on systematic management, system recovery and protection activities against system failure. and most developers and system administrators response based on their experience and the instinct. This article focuses on the mitigation model development for minimizing the incidents of disk unit in IT operational risks. The model will be represented by a network model which is composed of the three items as following: (1) the risk factors(causes, attributes and indicators) of IT operational risk. (2) a periodic time interval through an analysis of historical data. (3) an index or an operational regulations related to the examination of causes of an operational risk. This article will be helpful when enterprise needs to hierarchically analyze risk factors from various fields of IT(information security, information telecommunication, web application servers and so on) and develop a mitigation model. and it will also contribute to the reduction of operational risks on information systems.

• International Journal of Quality Innovation
• /
• v.10 no.2
• /
• pp.1-17
• /
• 2009

This paper presents a theoretical research framework that was used to analyse operational risk management (ORM) system practices in Australia. It provides a new perspective on how to use national and international operational management system standards as a basis for systematic management of operational risks. Based on the extensive literature review and the analysis of operational risk management system practices that are common in Australian organisations, this paper identifies the critical factors for effective use of an ORM system. The proposed framework could also be used as a model to research ORM system applications in other countries.

• Asia pacific journal of information systems
• /
• v.25 no.3
• /
• pp.597-625
• /
• 2015

Prior research has emphasized the significant effect of service orientation on organizational performance. However, little research on service orientation has been conducted in the financial field, including the investment management service industry in which high quality service for clients is required. In this paper, we propose a research model that centers on the concept of service orientation as a type of dynamic capability affecting firm performance. The research variables include job competency, risk management capability, operational capability, service orientation, and service performance. We assume that service orientation partially mediates the effects of risk management capability and operational capability on service performance. To test the model, we collected data from 391 fund managers in 86 teams (37 investment management companies) and analyzed it with partial least squares (PLS) method. Each of the 391 fund managers was asked to answer team level measures, which is effective for team level analysis. We find that job competency positively affects both risk management capability and operational capability, which in turn affect service orientation. Risk management capability and operational capability are assumed to directly affect service performance. However, risk management capability does not influence perceived service performance, whereas operational capability does affect it. This result indicates that risk management capability does not directly affect service performance. However, via service orientation, considering that risk management inconveniences customers and is geared to enhance service orientation, service performance is positively affected. Operational capability does not influence service orientation, whereas it affects perceived service performance. This result reveals that operational capability directly affects firm performance. As expected, service orientation significantly affects the service performance perception of fund managers. This study contributes to the literature by introducing service orientation to the financial industry and measures and tests team-level service performance. Our findings also provide insights to practitioners because to enhance team performance, managers must focus on service orientation in addition to operational capability.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.24 no.4
• /
• pp.705-719
• /
• 2014

Recently the importance of operational risk is gradually increasing in risk management of financial institute. Especially the service interruption caused by system failure can lead to customer complaints, decrease of profit and customer secession. Thus, financial industry makes diverse effort to minimize the impact caused by the system failure of IT application. Common modules are used in IT system in financial industry to exclude redundant development and to use the system efficiently. However, when a failure in common module is occurred, the risk that affects all the tasks using the common module exists. In this study, the damage affected by a failure in application program is prevented separating common module which has a large risk by task in the perspective of IT operational risk. In order to cope with damage, the research on the factors related to common module is conducted and proposes the separating common module standard for decrease of operational risk of the financial IT.

• Journal of Korean Society of Industrial and Systems Engineering
• /
• v.42 no.2
• /
• pp.9-17
• /
• 2019

In order to deal with high uncertainty and variability in emergency medical centers, many researchers have developed various models for their operational planning and scheduling. However, most of the models just provide static plans without any risk measures as their results, and thus the users often lose the opportunity to analyze how much risk the patients have, whether the plan is still implementable or how the plan should be changed when an unexpected event happens. In this study, we construct a simulation model combined with a risk-based planning and scheduling module designed by Simio LLC. In addition to static schedules, it provides possibility of treatment delay for each patient as a risk measure, and updates the schedule to avoid the risk when it is needed. By using the simulation model, the users can experiment various scenarios in operations quickly, and also can make a decision not based on their past experience or intuition but based on scientific estimation of risks even in urgent situations. An example of such an operational decision making process is demonstrated for a real mid-size emergency medical center located in Seoul, Republic of Korea. The model is designed for temporal short-term planning especially, but it can be expanded for long-term planning also with some appropriate adjustments.

• Asia pacific journal of information systems
• /
• v.13 no.4
• /
• pp.119-145
• /
• 2003

Recently, IT outsourcing has been one of the major concerns of many companies. This study proposes a model which composed the outsourcing planning and operational risks affecting the outsourcing performance. Especially, this study focused on the contractors perspective, because the outsourcing risk relative researches are recently performed on the service receivers perspective, contractors perspective researches were relatively lacked. The result of this study, outsourcing planning risks had not affected the outsourcing performance but it had positively affected the operational risks. And also, the outsourcing operational risks had negatively affected the outsourcing performance. For this reason, It is necessary to reduced planning risk induction for the outsourcing performance improvement. Because the planning risks positively affect the operational risks, it is necessary to reduced planning risk induction for the outsourcing performance improvement.

• Journal of Information Technology Applications and Management
• /
• v.11 no.3
• /
• pp.35-62
• /
• 2004

Recently, IT outsouricng has been one of the major concerns of many companies. This paper explores the relationship between information technology outsourcing risk factors and outsourcing performance. It is based upon a three-phase process utilizing IPO (Input-Process-Output) system. The first phase means the outsourcing planning risks t~at arise from overall environment of outsourcing, organizational refuse, and wrong contracts. The second phase implies outsourcing operational risks, which are occurred while out-sourcing perform and consist of organizational acceptances of outsourcing, partnership and hidden costs. The last phase is outsourcing performance based on four perspective of BSC(Blanced Scored Card). The survey was performed on the IT/IS firms, and the data was collected from 53 service receivers. The result of the analysis are as follows. First, Outsourcing planning risks positively affects the operational risks. Second, Outsourcing operational risks negatively affects the Outsourcing Performance.

• Journal of the Korean Society of Safety
• /
• v.34 no.5
• /
• pp.167-174
• /
• 2019

Compared to a single nuclear power plant (NPP) risk, the commonalities existing in the multiple NPPs attribute the characteristics of the multi-unit risk. If there is no commonality among the multiple NPPs, there will be no dependency among the risks of multiple NPPs. Therefore, understanding the commonality causing multi-unit events is essential to assessing the multi-unit risk, and identifying the characteristics of the multi-unit risk is necessary not only to select the scope and method for the multi-unit risk assessment, but also to analyze the data of the multi-unit events. In order to develop Korea-specific multi-unit risk assessment technology, we analyze the multi-unit commonalities included in the operational experiences of domestic NPPs. We identified 58 cases of multi-unit events through detailed review of domestic nuclear power plant event reports over the past 10 years, and the multi-unit events were classified into six commonalities to identify Korea-specific characteristics of multi-unit events. The identified characteristics can be used to understand and manage domestic multi-unit risks. It can also be used as a basis for modeling multi-unit events for multi-unit risk assessment.

• Journal of Convergence for Information Technology
• /
• v.10 no.8
• /
• pp.187-193
• /
• 2020

This study analyzed how risk factors in management affect the management of working capital in general hospitals in Korea. The data used accounting information for three years (2016~2017 and 2018) of 271 general hospitals using the medical institution accounting information disclosure system. The independent variables were the working capital level and the cash conversion cycle, The dependent variables were operational risk and market risk, Control variables were selected as components of working capital(cash, accounts receivable, inventory assets, accounts payable). According to the study, the lower the operational risk, the higher the level of working capital hospitals in Korea. Working capital decisions were confirmed to be attributable to operating risks, cash, inventory assets and accounts payable. And the lower the market risk (Operating Margin), the higher the cash conversion cycle. Therefore, it is necessary to review appropriate management measures of operational risks, cash, inventory assets and accounts payable identified as operating capital determinants so that medical institutions can also have economic response capabilities in consideration of the specificity of their operations.