- Title
- An IT Risk Management Framework for provincial business entities : a case study for Limpopo Economic Development Agency, Limpopo Province, South Africa
- Creator
- Mabitsela, Ngoakoana Unity
- Subject
- Risk management -- South Africa -- Limpopo Business enterprises -- Computer networks -- Security measures -- South Africa -- Limpopo
- Subject
- Information technology -- Security measures -- South Africa -- Limpopo
- Date Issued
- 2020
- Date
- 2020
- Type
- Thesis
- Type
- Masters
- Type
- MPhil
- Identifier
- http://hdl.handle.net/10948/49463
- Identifier
- vital:41723
- Description
- This study focused on a lack of an Information Technology Risk Management (ITRM) framework tailored for provincial business entities to assist with the management of IT risks. The research was aimed at developing a tailored IT risk management framework that would assist provincial business entities with an effective ITRM process. This was achieved through identifying factors that constitute an ITRM framework, determining the current IT risk management methods used in provincial business entities and assessing the IT risk culture. This research study was conducted at the Limpopo Economic Development Agency (LEDA), which is a provincial business entity in the Limpopo province. The objectives of the study were accomplished using a design science research approach which involved the creation of an artefact and design theory as a means to improve the current state of practice as well as existing research knowledge about provincial business entities and their management of IT risks. The Nelson Mandela University Design Science Methodology Framework (NMU-DSFM) was identified as the methodology to be followed to devise the contribution in the form of an artefact. It was found that the organisation does not have a positive IT risk culture. From the study of the data analysis performed, it was evident that provincial business entities have challenges associated with adequately identifying IT risks. The findings highlighted that for the proper management of risks, risk governance should be effective by ensuring that the board of directors takes the responsibility of IT risk management, and the essentials of risk governance were discussed at length. The research output for this study was a framework. The adoption of this framework may positively contribute to strengthening governance of IT risk management in the provincial business entities. Best practices were highlighted for ease of reference to determine what is required and how to implement this regarding IT risk management.
- Format
- xii, 80 leaves
- Format
- Publisher
- Nelson Mandela Metropolitan University
- Publisher
- Faculty of Engineering, the Built Environment and Technology
- Language
- English
- Rights
- Nelson Mandela Metropolitan University
- Hits: 1411
- Visitors: 1537
- Downloads: 216
Thumbnail | File | Description | Size | Format | |||
---|---|---|---|---|---|---|---|
View Details Download | SOURCE1 | Mabitsela, N.pdf | 1 MB | Adobe Acrobat PDF | View Details Download |