Identifying benefits and barriers for IS adoption : a sociotechnical framework applied to health care

Pinilla, Maria Luisa Piris

January 2007

The aim of this research is to propose a sociotechnical framework to identify stakeholders involved in information systems and the benefit and barriers to the adoption of such systems. The proposed framework (BEBAF) would help to acknowledge the potential problematic areas for the implementation and adoption of information systems for each actor or social group and to be able to offer solutions based on the potential benefits for each of them. Precursors of BEBAF are social construction of technology (SCOT) and stakeholder identification process. Two case studies in the healthcare contexts, one in the UK and one in Spain, have been conducted in this dissertation using a qualitative approach to provide a rich picture of the influences on e-Health, and the users and organisational response to those influences. Both case studies aimed to support chronically ill patients at home or in nursing homes. BEBAF was then applied to both case studies. Among the most important implications are that those systems hold the promise for improving the quality of life of patients with chronic conditions, providing a better control over the disease. However, their impact on the organisational structures, the lack of funding and the difficulties of alignment of all the actors involved are relevant constraints to their adoption into the mainstream healthcare services. The main contributions of this thesis are: first, the definition and evaluation of a socio-technical framework to investigate IS adoption. Apart from the two closure mechanisms proposed by SCOT, BEBAF proposes a new closure mechanism by reinterpretation of benefits. In turn, the application of the framework has led to identify an extensive list of barriers and benefits for the adoption of e-Health systems with some suggested solutions. Another outcome is a comprehensive list of stakeholders involved in the adoption of such systems.

362.102854

An enterprise systems perspective to GRC IS implementation process

Spanaki, Konstantina

January 2014

Governance, Risk and Compliance (GRC) Information Systems (IS) as an integrated technology has been introduced recently to facilitate the demanding operational and financial environment of the enterprises. The implementation process and the adoption of such systems is considered as a significant parameter influencing the success of operational performance and financial governance and could support the competitive advantage practices within the organisations. However, GRC literature is limited regarding the analysis of the implementation and adoption success. Therefore, there is a need for further research and contribution about these systems and more specifically their implementation process. Consequently, this investigation and analysis can provide an insight of this process by examining the aspects of the implementation, the lifecycle phases followed and the enterprise value drivers in each of these phases. Therefore, a framework was developed for structuring the analysis of this implementation including all these three elements as these were provided by the theoretic background. The empirical context of this research includes three field investigation studies based on the experience of key implementation stakeholder groups as participants. These investigation studies were analysed using thematic techniques following an interpretative qualitative analysis approach. It was proved that organisations have, directly or indirectly, followed specific lifecycle phases when they implement GRC systems as these are also described in the framework. Also they should consider specific aspects about the GRC systems and enterprise value drivers for the different lifecycle phases but also for a holistic approach of the implementation process. Hence new GRC implementation projects can use the phases and the analysis of these elements to facilitate and ease their decision-making and strategic planning before launching the implementation project. The analysis of the GRC implementation proved that a strict GRC environment can be established in the organisations through the successful implementation of a GRC technology. The implementation process of such technologies would require a preparation for the organisational environment in order the implementation project to succeed the GRC goals and the system to be integrated and optimised harmoniously within the enterprise environment. This study provides insight of how this implementation projects could be planned and developed and gives a directive blueprint for preparing organisations hosting such technological initiatives. The results of all field investigation phases, which can be considered as the contributions to theory and practice of this research, can have twofold implications: initially the development of a theoretical framework based on enterprise systems theories, and also an analysis of the GRC implementation process in specific. The framework is designed to structure the analysis of the GRC implementation aspects, the lifecycle phases and the enterprise value drivers of the GRC implementation process. This framework is used for visualising and structuring a specific analysis of the GRC adoption and success, and therefore this analysis can be used by practitioners and researchers to further evaluate and analyse this process. Furthermore, organisations can use this analysis for decision-making processes; as this analysis can provide a primary view for the implementation projects.

658.4

Zero Trust Adoption : Qualitative research on factors affecting the adoption of Zero Trust

Hansen, Jennifer

January 2022

The following qualitative research explores the adoption of Zero Trust in organisations from an organisational and user acceptance perspective. From an organisational perspective, the research highlights essential aspects such as testing the Zero Trust architecture in a pre-adoption phase, involving top management in the planning phase, communicating in a non-technical language, and making end-users feel a personal connection to IS security. The research highlights the importance of balancing the ease of use with security, evaluating the end-user's technical maturity, and carrying out evaluations from a user acceptance perspective. To gather valuable empirical data, the researcher has conducted semi-structured interviews with highly competent respondents within the field of Zero Trust. Most of the literature available today within Zero Trust focuses on technical aspects, and this research is a unique and vital contribution to the limited available research.

Zero Trust

Traditional Network-based Security

Perimeter-based Security

End-users

Implementation

IS Adoption

IS Security

IS Security Innovation Adoption

Information Systems, Social aspects