Maturity of IT risk management practices and reporting structure: an it manager perspective

In December 2009, the Securities Exchange Commission (SEC) approved enhanced proxy disclosure rules requiring companies to disclose the board’s leadership
structure and the board’s role in risk oversight. Apart from general business risks, boards
are increasingly interested in Information Technology (IT) risks as it affects all aspects of
the organization (PricewaterhouseCoopers [PwC], 2013). Since the effectiveness of IT
risk management depends on senior managers’ actions, this dissertation attempts to
answer the question of whether the maturity of IT risk management practices (the extent
to which management performs particular activities to identify, assess, monitor and
respond to IT-related risks) in organizations depends on the Chief Information Office
(CIO) reporting structure and the board’s leadership structure. / Includes bibliography. / Dissertation (Ph.D.)--Florida Atlantic University, 2014. / FAU Electronic Theses and Dissertations Collection

Identiferoai:union.ndltd.org:fau.edu/oai:fau.digital.flvc.org:fau_30825
ContributorsVincent, Surani (author), Higgs, Julia (Thesis advisor), Florida Atlantic University (Degree grantor), College of Business, School of Accounting
PublisherFlorida Atlantic University
Source SetsFlorida Atlantic University
LanguageEnglish
Detected LanguageEnglish
TypeElectronic Thesis or Dissertation, Text
Format89 p., application/pdf
RightsCopyright © is held by the author, with permission granted to Florida Atlantic University to digitize, archive and distribute this item for non-profit research and educational purposes. Any reuse of this item in excess of fair use or other copyright exemptions requires permission of the copyright holder., http://rightsstatements.org/vocab/InC/1.0/

Page generated in 0.0018 seconds