KIPS Transactions on Software and Data Engineering (정보처리학회논문지:소프트웨어 및 데이터공학)

Korea Information Processing Society (한국정보처리학회)
권호 표지
DOI QR코드

DOI QR Code

A Development of The IT Audit-Based Application Framework for University IT Governance

대학정보화 거버넌스를 위한 감리기반 응용프레임워크 개발

  • Received : 2018.11.20
  • Accepted : 2019.02.27
  • Published : 2019.05.31
Download PDF
⟨ Previous Next ⟩

Abstract

Information system audit, which provides effective diagnosis and inspection of IT governance, is applied to all aspects from planning to development and operation. However, there is a difficulty in carrying out the audit because the system for the specialized university IT project is not developed. Therefore, it is necessary to set the internal system as the audit-based application framework in order to apply it to university IT governance. In this paper, we propose a audit-based application framework of university information system developed for university. The framework has a difference from the existing audit system. By using this framework, it is possible to present a standard for the university IT project and easily approach and use it in the field. And it can be used for direct audit through this framework in the level of the auditor as well as the HQ admin. The framework categorizes the audit into three major dimensions and suggests a method that can be applied to the university information system audit through the UAFP(University Audit Framework Process) and quality assurance.

IT 거버넌스의 효과적인 진단 및 점검을 이루는 정보시스템 감리는 전반적인 정보시스템 진단을 통해 계획부터 구축, 운영까지의 모든 부분에 적용된다. 하지만 특성화된 대학정보화를 위한 감리체계가 정립되지 않아, 감리수행에 어려움이 있다. 따라서 이를 대학정보화 거버넌스에 적용하기 위해 감리기반의 응용 프레임워크로 내부 감리체계를 정립할 필요성이 있다. 본 논문에서는 이러한 정보시스템 감리를 기반으로, 대학 정보화에 적용할 수 있도록 개발한 대학정보시스템의 감리 응용프레임워크를 제시한다. 프레임워크를 통해 기존 감리 시스템과의 차이점을 갖으며, 이를 활용하면 실제로 대학정보화 감리에 기준을 제시하고 현장에서 손쉽게 접근하여 활용할 수 있다. 그리고 정보화 업무담당자 뿐 아니라 감리인 차원에서도 프레임워크를 통해 직접 감리에 활용할 수 있다. 프레임워크는 감리를 3대 영역으로 분류하고 UAFP 및 품질보증을 통해 대학정보시스템 감리에 적용할 수 있는 방법을 제시한다.

Keywords

JBCRJM_2019_v8n5_179_f0001.png 이미지

Fig. 1. University Audit Framework

JBCRJM_2019_v8n5_179_f0002.png 이미지

Fig. 2. UAFP Diagram

JBCRJM_2019_v8n5_179_f0003.png 이미지

Fig. 3. Priority Analysis of Univ IT Audit Necessity (HQ)

JBCRJM_2019_v8n5_179_f0004.png 이미지

Fig. 4. Priority Analysis of Univ IT Audit Necessity (IT)

JBCRJM_2019_v8n5_179_f0005.png 이미지

Fig. 5. Priority Analysis of Type & Timeline (HQ)

JBCRJM_2019_v8n5_179_f0006.png 이미지

Fig. 6. Priority Analysis of Type & Timeline (IT)

JBCRJM_2019_v8n5_179_f0007.png 이미지

Fig. 7. Priority Analysis of Audit View (HQ)

JBCRJM_2019_v8n5_179_f0008.png 이미지

Fig. 8. Priority Analysis of Audit View (IT)

JBCRJM_2019_v8n5_179_f0009.png 이미지

Fig. 9. Priority Analysis of Audit Standard (HQ)

JBCRJM_2019_v8n5_179_f0010.png 이미지

Fig. 10. Priority Analysis of Audit Standard (IT)

JBCRJM_2019_v8n5_179_f0011.png 이미지

Fig. 11. Priority Analysis of Audit Area (HQ)

JBCRJM_2019_v8n5_179_f0012.png 이미지

Fig. 12. Priority Analysis of Audit Area (IT)

Table 1. Interview Items of Univ IT Audit Necessity

JBCRJM_2019_v8n5_179_t0001.png 이미지

Table 2. Type & Timeline of Univ IT Project

JBCRJM_2019_v8n5_179_t0002.png 이미지

Table 3. Audit view of Univ IT Project

JBCRJM_2019_v8n5_179_t0003.png 이미지

Table 4. Audit Standard of Univ IT Project

JBCRJM_2019_v8n5_179_t0004.png 이미지

Table 5. Audit area of Univ IT Project

JBCRJM_2019_v8n5_179_t0005.png 이미지

References

  1. D. Y. Moon, "Information System Audit," 1st ed., Paju:Myungkyungsa, 1998.
  2. P. S. Lee, "A Study on the Audit Process Improvement for Web-based Information Systems," MS. Dissertation, KonKuk University, KOREA, 2009.
  3. J. A. Zachman, “A Framework for Information Systems Architecture,” IBM Systems Journal, Vol. 26, No. 3, pp. 276-292, 1987. https://doi.org/10.1147/sj.263.0276
  4. H. S. Kim, "Information System Check and Audit," 2nd ed., Seoul: Bubyoungsa, 2002.
  5. Wikipedia, "Information technology audit." [Internet], https://en.wikipedia.org/wiki/Information_technology_audit
  6. Wikipedia, "Software audit review." [Internet], https://en. wikipedia.org/wiki/Software_audit_review
  7. S. H. Kim, "A study on the quality improvement devices of Information System Auditing," MS. Dissertation, Chung-Ang University, KOREA, 2001.
  8. H. S. Jung, "Quality Improvement Plan through Analysis of Information System Audit Examples," MS. Dissertation, KonKuk University, KOREA, 2008.
  9. H. S. Jeon, "A Study on the Efficient Audit Items for the Information System Project in University Organization," MS. Dissertation, Ajou University, KOREA, 2009.
  10. D. S. Kim, "(A) Study on the Effects of the information system audit on the Project Performance," Ph.D. Dissertation, Kookmin University, KOREA, 2006.
  11. S. W. Lee, "Studies on the improvement of Information Systems Audit Framework base on Best Practice of Project Management," MS. Dissertation, KonKuk University, KOREA, 2017.
  12. B. R. Kang, "Operational Audit Model for ITIL-based University Information Systems," MS. Dissertation, KonKuk University, KOREA, 2013.
  13. L. Bass, and P. Clements, "Software Architecture In Practice," 2nd ed., Addison Wesley, 2003.
  14. K. R. Song, "(An) analysis of auditor check list for management," MS. Dissertation, Seoul Tech. National University, KOREA, 2004.
  15. Y. M. Kim, "Study on the Method of Enterprise Social Network Quality Management by Using a Framework of Information System Audit," MS. Dissertation, KonKuk University, KOREA, 2014.
  16. K. H. Kim, "A study on enhancement of IS audit framework," 1st ed., National Computerization Agency in Korea, 2003.
  17. J. C. Henderson and H. Venkatraman, “Strategic alignment:leveraging information technology for transforming organizations,” IBM Systems Journal, Vol. 38, No. 2.3, pp. 472-484, 1999. https://doi.org/10.1147/SJ.1999.5387096
  18. J. C. Shin, "A Study on Information Systems Audit Improvement based on Requirements Engineering," MS. Dissertation, KonKuk University, KOREA, 2015.
  19. D. S. Kim, H. S. Kim, J. H. Kang, and K. S. Yang, “A Study on the Effectiveness Factors for Information System Audit and Project Performance: Focus on Audit Contextual Factors and Service Factors,” Information Policy, Vol. 14, No. 1, pp. 44-67, 2007.
  20. J. J. Choi and C. S. Kim, “A Development of The CobiTBased Framework for University IT Governance,” Journal of Information Processing Systems, Vol. 7, No. 10, pp. 367-376, 2018.
  21. D. S. Kim and H. S. Kim and Y. S. Ahn, “An Effect on the Audit Quality and Customer Satisfaction by Information System Audit Style,” Journal of the Korea Society of IT Services, Vol. 4, No. 2, pp. 23-32, 2005.
  22. Y. K. Joo, "An Empirical Study on The Influences of The Operating and Maintaining Audit for Information System," MS. Dissertation, KonKuk University, KOREA, 2013.
  23. H. M. Kim, "A Study on the Improvement Method of the System Operability from the Information Systems Audit Viewpoint," MS. Dissertation, KonKuk University, KOREA, 2006.
  24. J. Y. Jang, "The Effects of Organizational Communications and Knowledge Complementarities on the Performance of the Information System Audit(Focused on a Resident Audit in the project office)," Ph.D. Dissertation, University of Seoul, KOREA, 2015.
  25. D. S. Kim, H. S. Kim, and Y. S. Ahn, “Software Engineering:An Effect on the Audit Quality and Customer Satisfaction by the Service Quality of Information System Audit,” Journal of the Korea Society of IT Services, Vol. 11, No. 7, pp. 1467-1476, 2004.
  26. D. S. Kim, K. S. Yang, and H. S. Kim, "A Study on the Effect of the Information System Audit Fidelity on the Customer Satisfaction and Project Performance," Journal of the Korea Society of IT Services, Vol. 5, No 2, pp. 59-78, 2006.
  27. K. H. Sung, "(An) effect on customer satisfaction by the consulting service quality of internal information technology audit," MS. Dissertation, Yonsei University, KOREA, 2010.
  28. B. W. Moon, "An Empirical Study on the Performance Factors of Information System Audit," Ph.D. Dissertation, Soongsil University, KOREA, 2011.
  29. T. W. Kyung and S. K. Kim, “A Study on the Priority Analysis of Information Systems Audit Evaluation Factors between Stakeholders,” Information Systems Review, Vol. 10, No. 1, pp. 165-191, 2008.
  30. K. T. Hwang and S. I. Lee, "Information systems audit : major means of IT governance," 2nd ed., Top Books Publishing, 2015.