You are here

EFFECTS OF IT GOVERNANCE ON INFORMATION SECURITY

Download pdf | Full Screen View

Date Issued:
2007
Abstract/Description:
This dissertation is composed by three essays that explore the relationship between good IT governance and effective information security services. Governance steers and verifies performance of fiduciary duties, through the implementation of proper governance mechanisms. With a focus on information security, this essay presents three categories of governance mechanisms – process-based, structural, and relational. When properly instituted, they work together to ensure that IT understands business requirements for information security and strives to fulfill them. An explanation is offered about the efficacy of those mechanisms, based on an agency theory perspective that views IT as an agent for business. The two underlying causes for agency problems are goal incongruence and information asymmetry between the agent and the principal. Governance mechanisms help to reduce both goal incongruence and information asymmetry. Hence, they lead to desired outcomes. A theoretical framework is presented and empirical tested.
Title: EFFECTS OF IT GOVERNANCE ON INFORMATION SECURITY.
31 views
13 downloads
Name(s): Wu, Yu, Author
Saunders, Carol, Committee Chair
University of Central Florida, Degree Grantor
Type of Resource: text
Date Issued: 2007
Publisher: University of Central Florida
Language(s): English
Abstract/Description: This dissertation is composed by three essays that explore the relationship between good IT governance and effective information security services. Governance steers and verifies performance of fiduciary duties, through the implementation of proper governance mechanisms. With a focus on information security, this essay presents three categories of governance mechanisms – process-based, structural, and relational. When properly instituted, they work together to ensure that IT understands business requirements for information security and strives to fulfill them. An explanation is offered about the efficacy of those mechanisms, based on an agency theory perspective that views IT as an agent for business. The two underlying causes for agency problems are goal incongruence and information asymmetry between the agent and the principal. Governance mechanisms help to reduce both goal incongruence and information asymmetry. Hence, they lead to desired outcomes. A theoretical framework is presented and empirical tested.
Identifier: CFE0001965 (IID), ucf:47435 (fedora)
Note(s): 2007-12-01
Ph.D.
Business Administration, Department of Management Information Systems
Doctorate
This record was generated from author submitted information.
Subject(s): information security
IT governance
agency relationships
decision rights
Persistent Link to This Record: http://purl.flvc.org/ucf/fd/CFE0001965
Restrictions on Access: campus 2008-12-04
Host Institution: UCF

In Collections