An IT Risk Management Framework for provincial business entities : a case study for Limpopo Economic Development Agency, Limpopo Province, South Africa

Mabitsela, Ngoakoana Unity

Title: An IT Risk Management Framework for provincial business entities : a case study for Limpopo Economic Development Agency, Limpopo Province, South Africa
Creator: Mabitsela, Ngoakoana Unity
Subject: Risk management -- South Africa -- Limpopo Business enterprises -- Computer networks -- Security measures -- South Africa -- Limpopo
Subject: Information technology -- Security measures -- South Africa -- Limpopo
Date Issued: 2020
Date: 2020
Type: Thesis
Type: Masters
Type: MPhil
Identifier: http://hdl.handle.net/10948/49463
Identifier: vital:41723
Description: This study focused on a lack of an Information Technology Risk Management (ITRM) framework tailored for provincial business entities to assist with the management of IT risks. The research was aimed at developing a tailored IT risk management framework that would assist provincial business entities with an effective ITRM process. This was achieved through identifying factors that constitute an ITRM framework, determining the current IT risk management methods used in provincial business entities and assessing the IT risk culture. This research study was conducted at the Limpopo Economic Development Agency (LEDA), which is a provincial business entity in the Limpopo province. The objectives of the study were accomplished using a design science research approach which involved the creation of an artefact and design theory as a means to improve the current state of practice as well as existing research knowledge about provincial business entities and their management of IT risks. The Nelson Mandela University Design Science Methodology Framework (NMU-DSFM) was identified as the methodology to be followed to devise the contribution in the form of an artefact. It was found that the organisation does not have a positive IT risk culture. From the study of the data analysis performed, it was evident that provincial business entities have challenges associated with adequately identifying IT risks. The findings highlighted that for the proper management of risks, risk governance should be effective by ensuring that the board of directors takes the responsibility of IT risk management, and the essentials of risk governance were discussed at length. The research output for this study was a framework. The adoption of this framework may positively contribute to strengthening governance of IT risk management in the provincial business entities. Best practices were highlighted for ease of reference to determine what is required and how to implement this regarding IT risk management.
Format: xii, 80 leaves
Format: pdf
Publisher: Nelson Mandela Metropolitan University
Publisher: Faculty of Engineering, the Built Environment and Technology
Language: English
Rights: Nelson Mandela Metropolitan University

Hits: 1401
Visitors: 1524
Downloads: 212

Collections

NMU School of Information and Communication Technology

		Thumbnail	File	Description	Size	Format
View Details Download			SOURCE1	Mabitsela, N.pdf	1 MB	Adobe Acrobat PDF	View Details Download