• Journal of Information Technology Applications and Management
• /
• v.18 no.2
• /
• pp.91-108
• /
• 2011

Enormous losses of shareholders and consumers caused by the risks threatening today's business (e.g., accounting fraud and inside trading) have ignited the necessity of international regulations on corporate ethics and internal control, such as Basel II and SOX. Responding to these regulations, companies are establishing governance system, applying it consistently to the core competency of the company, and increasing the scope of the governance system. Recently occurred security related incidents require companies to take more strict accountability over information security. One of the results includes strengthening of legislation and regulations. For these reasons, introduction of information security governance is needed. Information security governance governs the general information security activities of the company (establishment of information security management system, implementation of information security solutions) in the corporate level. Recognizing that the information security is not restricted to IT domain, but is the issue of overall business, this study develops information security governance framework based on the existing frameworks and systems of IT governance. The information security governance framework proposed in the study include concept, objective, and principle schemes which will help clearly understand the concepts of the information security governance, and execution scheme which will help implement proper organization, process and tools needed for the execution of information security governance.

• Journal of Digital Convergence
• /
• v.17 no.8
• /
• pp.89-94
• /
• 2019

Due to the limitations of public and private blockchain, several organizations are implementing consortium blockchain systems. In order for an organization to conduct business using blockchain, it must consider 'blockchain governance' factors, such as decision rights, accountability and incentives over on-chain and off-chain, depending on the organization's strategy and objectives. If an organization conducts business without blockchain governance, it cannot achieve its strategy and objectives systematically, effectively and efficiently, and cannot comply with internal external requirements such as the expectations of stakeholders and laws. However, as businesses using consortium blockchain expand, there is no research on consortium blockchain governance. Thus, in this study, the consortium blockchain governance framework, including functions, roles and responsibilities, was developed to help organizations effectively and efficiently conduct business using consortium blockchain. In addition, to review the feasibility of the developed consortium blockchain governance framework, the framework was reviewed through an advisory committee consisting of experts on blockchain and governance over two occasions. As a result of the review, components of the consortium blockchain governance framework, including functions, roles and responsibilities, were considered complete and relevant.

• The Journal of Information Systems
• /
• v.20 no.2
• /
• pp.207-228
• /
• 2011

IT governance is an integral part of enterprise governance and consists of the leadership, organizational structures, and processes that ensure organization's IT decision making for achieving organizational goal. Most firms have failed to resolve the balance in building IT governance. The challenge is to align IT strategy with business strategy in establishing and implementing effective IT governance. The purpose of this study is to find out the relationship between IT governance implementation factors and IS effectiveness, and the moderating effect of strategic alignment of IS strategy with business strategy on IS effectiveness. IT governance implementation factors consist of IT vendor management, IT human resource management, and IT infrastructure. Strategic alignment was measured as the alignment between business strategic orientation and IS strategic orientation that used in the research of Chan et al.(1997). In the relationship between three IT governance implementation factors and IS effectiveness, the results of multiple regression analyses showed that IT human resource management is an important determinant to influence IS effectiveness. The additional analysis using multiple regression showed that strategic alignment of IS strategy with business strategy has moderated the relationship between IT governance implementation factors and IS effectiveness.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.14 no.6
• /
• pp.2707-2716
• /
• 2013

The purpose of this paper is to focus on the analysis of organizational members' psychological reactance factors on IT governance control in various types of organizations by the use spreading of individual devices. For this, a model was made based on previous researches related to IT governance control, the scale of organizational members' psychological reactance and the expectancy theory. The statistical significance of organizational members' psychological reactance factors and attitude on IT governance control was tested by the Hong's psychological reactance scale, the level of reward according to expectancy theory, the position in organization and organization size. This study shows controls for achieving the managerial goal of company and an analytical framework generated by analyzing systematically organizational members' psychological reactance factors by IT governance and managerial implications on IT governance control are also presented.

• Journal of the Korea Society of Computer and Information
• /
• v.15 no.12
• /
• pp.255-263
• /
• 2010

In this paper, I derived some function factors from ITA role in organization as to analyze what ITA function has influenced on ITA governance. The factors of IT governance system and their effects on the their organizations are discussed and the relationships are verified by empirical model. In result of statistical analysis based on the 223 case of organizations, it appeared that IT infrastructure, IT technology system and IT performance system of IT functions are the contributing factors on the IT Governance. The main analysis results described significantly are shows as follows. Through the introduction of ITA which has improved technology system support and performance system level, it is effected by the ITA Governance system building.. In special, focusing on IT infrastructure systemization., IT service level is expected to improve of the IT Governance sphere, This study is intended to propose how to improve information management efficiency through ITA.

• Asian Journal of Business Environment
• /
• v.5 no.2
• /
• pp.15-22
• /
• 2015

Purpose - Following globalization, Kazakh companies are considered to be among the main economic agents of the country. The influence of Limited Liability Partnerships (LLPs) on Kazakhstan's economic development is becoming increasingly pronounced. Therefore, limitations and backwardness of legislation regarding regulation of corporate governance must be overcome at the earliest. Research design, data, and methodology - We considered the basis for legislation of corporate governance in Kazakhstan, and the corporate governance models that better describe the situation of being in the organization. Results - Earlier studies have identified several problems, including "transparency" of issuers and markets, and the consequent lack of (undeveloped) external control of managers of the former state-owned enterprises; lack of traditional corporate ethics and culture; and corruption, and other criminal aspects of the problem. This article describes several proposals to improve corporate governance in Kazakhstan to solve these problems. Conclusions - Domestic reformers acting without consideration of local features is a common occurrence today. They often ignore that these features are recommended for reputable international organizations, and therefore should be used carefully.

• Journal of Advanced Navigation Technology
• /
• v.14 no.6
• /
• pp.935-950
• /
• 2010

The purpose of this study is to try to find out the relationship between the perception and behavior of employees and the Information Security Governance (ISG) which consists of leadership and governance, security management and organization, security policies, security program management, user security management, and technology protection and operations. Some effective suggestions from the verification of research hypotheses and the analysis of the most appropriate model were drawn out.

• Journal of Construction Engineering and Project Management
• /
• v.3 no.1
• /
• pp.22-27
• /
• 2013

Inter-organizational Relationships (IORs) governance is one of the emerging research areas that have been studied in different contexts (e.g. economics, strategy, organization, and management). This view, particularly, attracted rising attention from academics and practitioners in the context of construction projects, due to the complex forms of IORs in terms of inter-firm exchanges (e.g. engineering, procurement, finance, construction, and operation) in these projects. The focus of IORs governance is to control Inter-organizational relationships among two or more cooperative parties to alleviate conflict and achieve mutual gains. One of the mechanisms that have been identified in the related literature is formal governance mechanism. Although many empirical studies have been conducted using formal governance terms and indicators, there isn't yet a consensual definition of this mechanism and its components that may cause misinterpretation of research results and also impede future research. This paper makes contribution to the concept of IORs governance by clarifying the meaning of formal governance mechanism and identifying different indicators of this mechanism that have been used and identified in previous studies. This provides an innovative and useful framework to understand formal governance mechanism and its application in construction projects.

• International conference on construction engineering and project management
• /
• 2013.01a
• /
• pp.321-327
• /
• 2013

Inter-organizational Relationships (IORs) governance is one of the emerging research areas that have been studied in different contexts (e.g. economics, strategy, organization, and management). This view, particularly, attracted rising attention from academics and practitioners in the context of construction projects, due to the complex forms of IORs in terms of inter-firm exchanges (e.g. engineering, procurement, finance, construction, and operation) in these projects. The focus of IORs governance is to control Inter-organizational relationships among two or more cooperative parties to alleviate conflict and achieve mutual gains. One of the mechanisms that have been identified in the related literature is formal governance mechanism. Although many empirical studies have been conducted using formal governance terms and indicators, there isn't yet a consensual definition of this mechanism and its components that may cause misinterpretation of research results and also impede future research. This paper makes contribution to the concept of IORs governance by clarifying the meaning of formal governance mechanism and identifying different indicators of this mechanism that have been used and identified in previous studies. This provides an innovative and useful framework to understand formal governance mechanism and its application in construction projects.

• Journal of Korean Library and Information Science Society
• /
• v.46 no.4
• /
• pp.325-354
• /
• 2015

Corporate information has great value, but also poses great risk. Information governance is an organization's coordinated, inter-disciplinary approach to satisfying information compliance requirements and managing information risks while optimizing information value. This study aims to suggest the directions of implementing information governance in business firms based on analyses of Sedona Conference Principles of Information Governance. After analysing and reformulating the principles into control standards, and they are investigated and interpreted in terms of practicing information governance.