An aggregated information technology checklist for operational risk management
| dc.contributor | Graduate Program in Management Information Systems. | |
| dc.contributor.advisor | Onay, Ceylan. | |
| dc.contributor.author | Önal, Mehmet Zeki. | |
| dc.date.accessioned | 2023-03-16T12:51:32Z | |
| dc.date.available | 2023-03-16T12:51:32Z | |
| dc.date.issued | 2007. | |
| dc.description.abstract | This paper develops an aggregated information technology (IT) checklist in order to manage the operational risks in an organization, especially those caused by the information systems and technology infrastructure. The study addresses the issue of the IT Governance frameworks and standards (information control models) that respond to different levels of operational risks and need to be harmonized. The definition of risk, operational risk, and risk management are discussed, a requirement analysis regarding Basel II is conducted, a gap analysis between the information control models (ICMs) is performed, and the aggregated IT checklist for operational risk management (ORM) is proposed by mapping the control objectives in ICMs to the operational risk categories described in Basel II as loss event types. The validity and reliability of the study is based on the focus group assessment of the mappings. The managerial impacts of the checklist are discussed, considering the audit implications of the checklist. | |
| dc.format.extent | 30cm. | |
| dc.format.pages | ix, 117 leaves; | |
| dc.identifier.other | MIS 2007 O53 | |
| dc.identifier.uri | https://digitalarchive.library.bogazici.edu.tr/handle/123456789/18097 | |
| dc.publisher | Thesis (M.A.)-Bogazici University. Institute for Graduate Studies in the Social Sciences, 2007. | |
| dc.relation | Includes appendices. | |
| dc.relation | Includes appendices. | |
| dc.subject.lcsh | Risk management. | |
| dc.subject.lcsh | Information technology. | |
| dc.title | An aggregated information technology checklist for operational risk management |
Files
Original bundle
1 - 1 of 1