• Journal of Information Technology Applications and Management
• /
• 제26권4호
• /
• pp.31-39
• /
• 2019

The 129 public institutions in Korea are subject to Information Security Management Condition Evaluation (ISMCE) as a part of the government management evaluation system by the Ministry of Economy and Finance. ISMCE is started in 2006 with the central government institutions, and applied to the all public institutions in 2009. This evaluation is annually conducted by the National Intelligence Service through the site visits, and the number of the evaluated institutions is increasing year by year. However, the process of ISMCE - identifying existing vulnerabilities in the information system - is conducted manually. To improve this inconvenience, this paper introduces the various evaluation system in the major countries, especially in the United States, and analyzes the Security Content Automation Protocol (SCAP) by NIST. SCAP is automation protocol for the system vulnerability management (in technical fields) and security policy compliance evaluation. Based on SCAP, this paper suggests an improvement plan for the ISMCE of Korea.

• Journal of Smart Tourism
• /
• 제3권3호
• /
• pp.17-27
• /
• 2023

This study examines the scientific publications on website evaluation in hospitality and tourism from 2010 to 2023 through a systematic review and discusses implications for future research. The reviewed literature from publication years, journals, research methods, website-related stakeholders, context, various forms of Internet presence (Internet forms), and theories are analyzed to create a comprehensive website evaluation dimension. Furthermore, a conceptual framework is developed to show the relationship between the website characteristics, stakeholders-channels interaction, and stakeholders' reactions. The proposed website evaluation framework in hospitality and tourism synthesizes the existing knowledge, identifies gaps, and further advances our understanding of this research area.

• 한국산업융합학회 논문집
• /
• 제27권3호
• /
• pp.535-546
• /
• 2024

This research aims to develop a model to objectively and quantitatively measure the skill level of aircraft body assembly workers. Because aircraft body assembly is predominantly a manual process, skills management is a key factor of manufacturing competitiveness. Currently, skills management relies on the subjective judgment of supervisors, which lacks objectivity and reliability. As a remedy, this study proposed a systematic skill management model based on objective and quantitative evaluation criteria. By considering prior research, we developed an evaluation model that takes into account both expertise and versatility of a worker. The model selected five major tasks required for aircraft body assembly and established evaluation criteria considering the difficulty and maturity of each task. We then conducted a pilot evaluation with over 200 workers in four SMEs to validate the practicality and effectiveness of the model. Consequently, we identified and addressed the limitations of the existing evaluation method, subdivided the skill levels based on the performance capabilities of each task, and proposed a career growth path. The developed evaluation model offers critical data for executives and managers to determine work assignments, education, training, performance incentives, and wages. It is expected to enhance the attraction of new talent and systematize skills management in aviation manufacturing in the future.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제5권6호
• /
• pp.1192-1213
• /
• 2011

Information security management systems (ISMSs) are used to manage information about their customers and themselves by governments or business organizations following advances in e-commerce, open networks, mobile networks, and Internet banking. This paper explains the existing ISMSs and presents a comparative analysis. The discussion deals with different types of ISMSs. We addressed issues within the existing ISMSs via analysis. Based on these analyses, then we proposes the development of an information security management evaluation system (ISMES). The method can be applied by a self-evaluation of the organization and an evaluation of the organization by the evaluation committee. The contribution of this study enables an organization to refer to and improve its information security levels. The case study can also provide a business organization with an easy method to build ISMS and the reduce cost of information security evaluation.

• 디지털융복합연구
• /
• 제13권8호
• /
• pp.91-99
• /
• 2015

최근에 소프트웨어(SW) 융복합 시대를 맞아 SW품질관리의 중요성에 대한 관심이 높아지고 있다. 이에 본 연구에서는 품질관리전담기관의 SW품질활동관리 적정성을 객관적으로 평가 할 수 있는 방안에 대하여 기존의 품질 활동관리 적정성 사례를 기반으로 새로운 적정성 평가 방안을 제안하고자 한다. 이를 위하여 다음과 같이 연구 목적을 세 가지로 설정한다. 첫째, 기존의 국가 SW R&D 프로젝트의 SW품질활동관리 적정성 평가의 문제점을 도출하고 분석한다. 둘째, 기존의 SW품질활동관리 적정성 평가에 대한 문제점을 극복할 수 있는 새로운 적정성 평가 방법을 제안한다. 셋째, 새로운 적정성 평가 방법을 WBS(World Best Software) 프로젝트를 대상으로 적용해서 그 가능성과 효과성에 대하여 살펴본다. 본 연구에서 새롭게 제시한 국가 SW R&D 품질활동관리 적정성 평가 프레임워크를 대형 SW R&D 프로젝트인 WBS 프로젝트의 2개 과제에 실질적으로 적용해봄으로써 새로운 품질활동관리 적정성 평가 프레임워크의 효과성과 실무 적용 가능성을 입증하였다.

• 산업경영시스템학회지
• /
• 제35권4호
• /
• pp.41-47
• /
• 2012

To adapt to a rapidly changing business environment, introduction of new management techniques and innovative activities are crucial. In the case of small and medium companies, the compensation for scarce management resources and sustainable development can be obtained from advantage of management consulting. In this study, we propose the enterprise process evaluation model for small and medium business consulting, which can deploy the process improvement activities with considering the process maturity level within an organization. The process evaluation area of proposed Small and Medium Business, Staged Maturity Model (SMB-SMM) consists of four following parts: supply management, demand management, business management, and research and development (R&D) management. For each area, we set goals and also define the practices to achieve their goals respectively. By applying the SMB-SMM model to the small and medium sized companies, the process maturity level can be defined. And then to overcome the gap between the goals and evaluation results, the customized management consulting activities can be drawn from the predefined consulting approaches from the SMB-SMM.

• 아동학회지
• /
• 제37권6호
• /
• pp.119-132
• /
• 2016

Objective: The purpose of this study was to analyze the operation and personal information management of public and private kindergarten homepages. Methods: A total of 2,846 kindergartens were selected from the I-Sarang portal service for analyzing operation, and 217 self-operating homepages were selected for evaluating management. Seven evaluation items from three domains (information gathering procedures and scope, information security, and management of file exposure protection) were used. Wireshark and Google were used for analyzing some evaluation items. Results: The operating ratio of kindergarten homepages was low and most of the kindergartens self-operated their homepages. The evaluation of the information gathering procedures and scope showed that the rule of consent process was not rigidly followed but that the rule of legality for information gathering was followed. Items related to information security were followed at very low levels. As for the management of file exposure protection, the evaluation of items related to the prevention of attachment disclosure showed that the rule of protecting personal information included in an attached file was followed but that the notice regarding information protection was not. Across all evaluation items, the level of personal information management was higher in public (vs. private) kindergartens. Conclusion: These results indicate methods to more securely and effectively manage personal information on kindergarten homepages.

• 품질경영학회지
• /
• 제35권4호
• /
• pp.101-110
• /
• 2007

This study developed a new model for evaluating activities related to PL(Product Liability), with which our domestic enterprises can more easily assess the actual status of the management of PL than as they could do before. In addition, this model was designed to make the evaluation can be done focusing on the Product safety management cycle, unlike the other PL evaluation models. This model consists of 3 evaluation domains such as evaluations of planning, implementation, and assessment and taking action regarding product safety management. In order to verify that this evaluation model meets its objectives, the researcher directly conducted evaluations of activities related to PL in 3 companies specializing in electric home appliances through visiting them.

• 한국식품영양학회지
• /
• 제23권4호
• /
• pp.470-477
• /
• 2010

The purposes of this study were to identify the evaluation categories, areas, attributes of the hospital food service and to define the relative importance of the evaluation categories, areas, attributes of the hospital food service using analytic hierarchy process. A survey was conducted from January 8th to 25th in 2007. Questionnaires were mailed to the 310 directors of dietetic departments of hospitals that included 160 primary hospitals, 107 secondary hospitals, and 43 tertiary hospitals. The result of the analytic hierarchy process indicated that relative importance of evaluation category was 0.5259 for food service management and 0.3407 for nutrition care. The food service management consisted of four subcategories, which are equipment standard, sanitation, production, and delivery service. Sanitation(relative importance: 0.2652) was the most important area among the subcategories and it was followed by equipment standard(0.2067), delivery service(0.1864) and production(0.1848). The nutrition care has two subcategories, menu management and meal management. The relative importance of menu management(0.4174) was higher than that of meal management(0.3555). The quality of food service and nutrition care to inpatients can be improved by the evaluation system based on appropriate applications of the developed evaluation indicators for hospital food service systems.

• 품질경영학회지
• /
• 제49권2호
• /
• pp.127-143
• /
• 2021

Purpose: Smart Safety Living Lab is a Living Lab facility, constructed and operated by KITECH in Korea, to support the user experience(UX) evaluation, planning and certification of smart safety products and services. The purpose of this study is to develop a UX evaluation methodology that accommodates the characteristics of the Living Lab and smart safety products and services for a systematic and efficient UX evaluation in the Smart Safety Living Lab. Methods: A generic model of UX evaluation was first derived based on a review of related literature. Then, the generic model is revised to accommodate the characteristics of the Smart Safety Living Lab and smart safety products and services, resulting in the UX Evaluation Methodology for Smart Safety Living Lab (SSLL-UXEM). Results: The developed SSLL-UXEM consists of a structured process for UX evaluation, a guideline for conducting each step of the process, and a set of forms for recording the major evaluation results in each step. Conclusion: SSLL-UXEM can help to enhance the efficiency of the UX evaluation process and the consistency of the UX evaluation results. SSLL-UXEM is also expected to serve as a basis for UX evaluation in various living lab environments in the future.