DOI QR코드

DOI QR Code

An improvement plan of information system operational audit for database operational management based on data quality

데이터 품질에 기반을 둔 데이터베이스 운영관리를 위한 정보시스템 운영감리 개선 방안

  • Jang, WonJae (Graduate School of Information and Communication Information Systems Audit at Konkuk University) ;
  • Kim, Dongsoo (Information Systems Audit, Konkuk University) ;
  • Min, Dukki (Computer Science at Konkuk University)
  • 장원재 (건국대학교 정보통신대학원 정보시스템감리) ;
  • 김동수 (건국대학교 정보통신대학원 정보시스템감리) ;
  • 민덕기 (건국대학교 컴퓨터공학부)
  • Received : 2018.04.26
  • Accepted : 2018.06.19
  • Published : 2018.06.30

Abstract

With the dawn of society where individuals or enterprises based on data generate infinite profits, the significance of database operation management is growing centering on data quality. However, there are not many South Korean public or private entities managing them systematically. Against this backdrop, this study sought to investigate the current status and problems and explore how to improve from the perspective of auditors. To implement this study, audit checklist was improved and, based on it, auditors and IT experts were surveyed. The final data were analyzed to test the study hypotheses empirically. As a result of the analysis, it was found that the auditors had been highly satisfied with all of the items on the improved audit checklist for data quality-based database operation management. Moreover, non-auditors were also found to regard them within their acceptable range. This study is expected to help improve information system operation audit and enterprises data operation management.

본 연구는 데이터를 기반으로 개인 또는 기업들이 무한한 이익을 창출하는 사회가 되면서 데이터 품질을 중심으로 데이터베이스 운영관리의 중요성이 증가하고 있는데 이를 체계적으로 관리하는 국내 공공, 민간 기업이 많지 않은 상태에 대한 현황 및 문제점을 분석하고 감리인의 입장에서 개선방향을 구명하고자 하였다. 본 연구를 수행하기 위해 개선된 감리 점검항목을 도출하여 이를 기반으로 감리인 및 IT 전문가들을 통해 설문조사를 하였고, 최종 자료를 분석에 활용하여 연구 가설을 실증적으로 검증하였다. 분석 결과, 데이터 품질에 기반을 둔 데이터베이스 운영관리의 개선된 감리 점검항목에 대하여 감리인의 입장에서 모든 점검항목에 대해 매우 만족한다고 나타났다. 또한 비 감리인에 입장에서도 수용범위에 포함된다고 확인되었다. 본 연구를 통해서 정보시스템 운영감리와 기업의 데이터 운영관리의 수행에 이를 활용하여 개선할 수 있을 것이다.

Keywords

References

  1. Chen Liu, "The Design and Implementation of a Rule Based SQL Inspection Tool for Database Audit", Ph.D Thesis, Pukyong National University, 2016.
  2. Chen Liu, Tae-woo Kim, and Jae-mo Kim, "Design and Implementation of SQL Audit Tool for Database Performance", Journal of The Korea Information Processing Society. Software and Data Engineering, Vol. 5, No. 5, 2016, 203-208).
  3. Dell EMC, "EMC Global Data Protection Index, GDPI", 2016, Available at https://www.emc.com/microsites/emc-global-data-protection-index/index.htm (Accessed May 01. 2017).
  4. Kang Deuk Hee, "The impact of data quality management activity on user's satisfaction and usage", 석사학위논문, 건국대학교, 2012.
  5. Kim Sun Ho, and Lee Chang-soo. "A Master Data Quality Management Framework", Entrue Journal of Information Technology, VOL. 9, NO. 2 ,2010, 109-121.
  6. Kim Jong-Won, "System Audit Improvement through identifying Database Query Audit Inspection Item", Master Thesis, Incheon University, 2013.
  7. Ko, Jae Hwan, and Dong Soo Kim, and Sang Bok Kim, "Research on ways to data quality diagnostic for Information System Audit", Korea IT Services International Conference, 2011, 417-420).
  8. Korea Data Institute, "Database Quality Certification", 2008, Available at https://www.dqc.or.kr/ (Accessed May 01. 2017).
  9. Korea Data Institute, Data Industry Survey Report, Korea Data Institute, Seoul, 2016.
  10. Korea Database Promotion Agency, Data Quality Management Maturity Level Survey Report, Korea Database Agency, Seoul, 2010
  11. Korea Database Promotion Agency, Data Architecture Expert Guide, Korea Data Development Institute, Seoul, 2013.
  12. Korea Information Technology Promotion Agency, Information Systems Inspection Audit Comment V3.0, Korea Informatization Promotion Agency, Seoul, 2008.
  13. Korea Database Promotion Agency, Database Security Guidelines, Seoul, 2014.
  14. Korea Database Promotion Agency, Data Quality Management Guidelines, Seoul, 2012.
  15. Korea Database Promotion Agency, Data Quality Guidelines, Seoul, 2011.
  16. Korea Information and Telecommunications Technology Association TTA, Information System Operation and Management Guideline TTAS.KO-10.0118 / R1, Korea Information Technology Association, Gyeonggi-do, 2007.
  17. UK Government, ITIL V3, UK Government, UK, 2011.
  18. ISACA, COBIT 4.1 Korean Edition, ISACA, Seoul, 2011.
  19. ISO, ISO/TS 8000-150:2011 Data quality -- Part 150: Master data: Quality management framework, ISO, Switzerland Geneva, 2011.
  20. Jeon Seok Hee, "A Study on the Information System Development Audit for Data Quality Improvement Master Thesis", Konkuk University, 2015.
  21. Jung Joon, "Operation audit framework for IT outsourcing", Master's Thesis, Konkuk University, 2012
  22. Ministry of Information and Communication, Information System Operation Management Guideline, Ministry of Information and Communication, Seoul, 2005.
  23. Lee Byung - Man, et al. "The Establishment of IT Audit and Direction for increasing its Market" Korea IT Services International Conference, 2011, 279-284..
  24. Lee Yiwoo, "Information System Audit Framework Based on COBIT in ERP Systems", Master Thesis, Konkuk University, 2010.
  25. Yoo Sang-Nyeon, "A Study on Information Systems Audit Guidelines for Personal Information Protection in Public Organizations", Master Thesis, Konkuk University , 2015.