A Study on the New Management System Considering Shadow IT

Journal of the Korea society of IT services Pub Date : 2016-09-30 DOI:10.9716/KITS.2016.15.3.033

Jiyeon Yoo, Na-Young Jeong

{"title":"A Study on the New Management System Considering Shadow IT","authors":"Jiyeon Yoo, Na-Young Jeong","doi":"10.9716/KITS.2016.15.3.033","DOIUrl":null,"url":null,"abstract":"* 상명대학교 일반대학원 지식보안경영학과 ** 상명대학교 경영대학원 석사과정 In a dynamic IT environment, employees often utilize external IT resources to work more efficiently and flexibly. However, the use of external IT resources beyond its control may cause difficulties in the company. This is known as “Shadow IT.” In spite of efficiency gains or cost savings, Shadow IT presents problems for companies such as the outflow of enterprise data. To address these problems, appropriate measures are required to maintain a balance between flexibility and control. Therefore, in this study, we developed a new information security management system called AIIMS (Advanced IT service & Information security Management System) and the Shadow IT Evaluation Model. The proposed model reflects a Shadow IT’s attributes such as innovativeness, effectiveness, and ripple effect. AIIMS consists of five fields: current analysis; Shadow IT management plans; management process; education and training; and internal audit. There are additional management items and sub-items within these five fields. Using AIIMS, we expect to not only mitigate the potential risks of Shadow IT but also create successful business outcomes. Now is the time to draw to the Light in","PeriodicalId":272384,"journal":{"name":"Journal of the Korea society of IT services","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-09-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of the Korea society of IT services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.9716/KITS.2016.15.3.033","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

* 상명대학교 일반대학원 지식보안경영학과 ** 상명대학교 경영대학원 석사과정 In a dynamic IT environment, employees often utilize external IT resources to work more efficiently and flexibly. However, the use of external IT resources beyond its control may cause difficulties in the company. This is known as “Shadow IT.” In spite of efficiency gains or cost savings, Shadow IT presents problems for companies such as the outflow of enterprise data. To address these problems, appropriate measures are required to maintain a balance between flexibility and control. Therefore, in this study, we developed a new information security management system called AIIMS (Advanced IT service & Information security Management System) and the Shadow IT Evaluation Model. The proposed model reflects a Shadow IT’s attributes such as innovativeness, effectiveness, and ripple effect. AIIMS consists of five fields: current analysis; Shadow IT management plans; management process; education and training; and internal audit. There are additional management items and sub-items within these five fields. Using AIIMS, we expect to not only mitigate the potential risks of Shadow IT but also create successful business outcomes. Now is the time to draw to the Light in

查看原文本刊更多论文

考虑影子IT的新管理体系研究

** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** ** **然而，使用超出其控制范围的外部IT资源可能会给公司带来困难。这就是所谓的“影子IT”。尽管提高了效率或节省了成本，影子IT还是给企业带来了一些问题，比如企业数据的外流。为了解决这些问题，需要采取适当措施，在灵活性和控制之间保持平衡。因此，在本研究中，我们开发了一种新的信息安全管理系统AIIMS (Advanced IT service & information security management system)和影子IT评估模型。该模型反映了影子IT的创新性、有效性和连锁效应等属性。AIIMS包括五个领域:当前分析;影子IT管理计划;管理过程;教育和培训;以及内部审计。在这五个字段中还有其他管理项和子项。使用AIIMS，我们期望不仅可以减轻影子IT的潜在风险，还可以创造成功的业务成果。现在是吸引光的时候了

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of the Korea society of IT services

自引率

0.00%

发文量