• Login
    View Item 
    •   SU+ Home
    • Research and Publications
    • Faculty of Information Technology (FIT)
    • FIT Projects, Theses and Dissertations
    • MSIT Theses and Dissertations
    • MSIT Theses and Dissertations (2012)
    • View Item
    •   SU+ Home
    • Research and Publications
    • Faculty of Information Technology (FIT)
    • FIT Projects, Theses and Dissertations
    • MSIT Theses and Dissertations
    • MSIT Theses and Dissertations (2012)
    • View Item
    JavaScript is disabled for your browser. Some features of this site may not work without it.

    Implementation of an information technology risk management framework : the case of Kenya Revenue Authority

    Thumbnail
    View/Open
    Thesis (4.653Mb)
    Author
    Sylvia Akeyo Omolo
    Metadata
    Show full item record
    Abstract
    Organizations are becoming more aware of the importance of IT risk management and its corresponding due diligence requirements.Optimizing risk to information is a core function of most ICT departments, both to protect the enterprise as well as to satisfy government and industry mandates.IT risk management is the discipline that on assessing, mitigating, monitoring and optimizing risks to information communication and related technologies. An abundance of IT risk management approaches exist that can assist organizations in determining and controlling IT risks. However, gaps have been uncovered in existing IT risk management methodologies. This thesis aim to implement an IT risk management framework that best suits KRA's current operating environment.To achieve the objectives of this research, a descriptive research design was employed. The research began with analysis of available IT risk management framework so as to glean the strengths and weaknesses of each.The risks that KRA's IT infrastructure assets were exposed to and the current state of IT risk management activities at KRA were then established. The research culminated in the development and validation of an IT risk management framework to address these IT risk management needs of the Kenya Revenue Authority.The proposed model was envisaged to lead to a better alignment of IT risk management activities with business objectives and Enterprise-Wide risk management activities.
    URI
    http://hdl.handle.net/11071/3490
    Collections
    • MSIT Theses and Dissertations (2012) [24]

    DSpace software copyright © 2002-2016  DuraSpace
    Contact Us | Send Feedback
    Theme by 
    Atmire NV
     

     

    Browse

    All of SU+Communities & CollectionsBy Issue DateAuthorsTitlesSubjectsThis CollectionBy Issue DateAuthorsTitlesSubjects

    My Account

    Login

    DSpace software copyright © 2002-2016  DuraSpace
    Contact Us | Send Feedback
    Theme by 
    Atmire NV