• 한국IT서비스학회지
• /
• 제19권6호
• /
• pp.119-130
• /
• 2020

This work investigates how domestic or foreign ERP affects the relationship between risks associated ERP implementation and intention to adopt risk-mitigating options. We propose three risks such as ERP vendor risk, economic risk, and security risk should affect positively the intention to adopt the risk-mitigating options. To validate the impact of risks and to examine the difference between domestic and foreign ERP, we collected data from IT managers in small and medium sized logistics companies in South Korea using survey questionnaires. We validate the difference between domestic ERP and foreign ERP using multiple regression analyses. We find that IT managers using domestic ERP are willing to adopt risk-mitigating options for economic and security risk. In contrast, we find that IT managers using foreign ERP are willing to adopt risk-mitigating options for ERP-vendor risk. This work may provide IT managers in logistics industry a practical guideline of choosing either domestic or foreign ERP based on their risk preferences.

• 한국경영과학회지
• /
• 제27권3호
• /
• pp.21-40
• /
• 2002

Recently, IT outsourcing has become a very important management strategy which implements information systems in organizations. This paper investigates the risks and strategic recognition as a key factors affecting on the degree of IT outsourcing. Specifically the risks of IT outsourcing and its four components-risk of control, risk of economical, risk of technical, risk of relational - are examined to be a negative effect on the degree of outsourcing. And strategic recognition about outsourcing is examined how to affect en the risks and the degree of IT outsourcing. To empirically test these relationships, data ere gathered from senior IT managers in 86 corporations. Results of this study show that the degree of outsourcing is strongly influenced by risk of control, risk of economical, risk of relational. But risk of technical does not influence on the degree of outsourcing. And strategic recognition about outsourcing is found that is negative effect on the risks of IT outsourcing and positive effect on the degree of IT outsourcing. The results provide a good framework to minimize the risks for IT outsourcing success.

• 대한산업공학회지
• /
• 제28권1호
• /
• pp.44-56
• /
• 2002

For the risk analysis and risk assessment techniques to be effectively applied to the field of information technology (IT) security, it is necessary that the required activities and specific techniques to be applied and their order of applications are to be determined through a proper risk management model. If the adopted risk management model does not match with the characteristics of host organization, an inefficient management of security would be resulted. In this paper, a risk management model which can be well adapted to Korean domestic IT environments is proposed for an efficient security management of IT. The structure and flow of the existing IT-related risk management models are compared and analysed, and their common and/or strong characteristics are extracted and incorporated in the proposed model in the light of typical threat types observed in Korean IT environments.

• 경영정보학연구
• /
• 제19권4호
• /
• pp.87-110
• /
• 2017

IT프로젝트 관리에 가장 중요한 요소 중 하나는 위험 관리이다. IT프로젝트 수행 중 발생할 수 있는 위험을 예측하고 대처하는 것이 프로젝트 성공 여부를 결정짓는 중요한 요소로 작용하기에, IT프로젝트 위험 요인은 학계와 업계에서 꾸준히 주목을 받는 주제이다. 이에 연구자들은 우선순위를 포함한 위험 요인 체크리스트 도출, 위험 요인들의 원인 관계 분석 및 프로젝트에 미치는 영향도 도출 등의 연구를 수행하였다. 그러나 위험 요인의 발생 확률과 영향도를 동시에 고려하는 위험 노출도의 관점에서 IT프로젝트 위험 요인을 체계적으로 분류한 연구는 미비하다. 본 연구는 문헌 연구 및 IT프로젝트 전문가 인터뷰를 바탕으로 IT프로젝트 위험 요인 53개를 도출하고, 도출된 위험 요인을 위험 노출도 관점에서 조사하였다. 나아가 프로젝트 관리자 140명의 설문을 통해 얻은 데이터로 군집분석을 실시해 4영역(HIHF, HILF, LIHF, LILF)으로 구분된 IT프로젝트 위험 요인 분류체계 프레임워크를 개발하였다. 또한 IT프로젝트를 프로젝트 성격 및 분야별로 위험 요인의 노출도 및 우선순위를 비교 분석하였다. 본 연구의 결과는 IT프로젝트 관리자들의 효율적 위험 관리 전략 수립을 돕고 IT프로젝트 실패를 줄이는데 활용될 수 있을 것이다. 또한 위험 요인의 발생 확률과 영향도를 동시에 고려했다는 측면에서 학문적인 의의를 가진다.

• 한국IT서비스학회지
• /
• 제14권3호
• /
• pp.117-129
• /
• 2015

For the continuous growth of firms, the contributions of effective risk management system are required. This research analyzes the impact on the firm's performance related to risk management structure which includes the risk management system, risk management activity and risk management competency. In this research, the structural equation model considering the variable which contains enterprise risk management system, risk management activity and risk management competency was suggested. Also risk management organization and management procedures are identified as in enterprise risk management system. The implementation activity and control activity were the factors related in risk management activity. And risk management competency can be described as the response level of managing risk in outside and inside the firms' environment. Finally this model was analysed empirically for 112 firms in Korea using SPSS 18.0 and Amos 16.0. As the results, the suggested hypothesis were adopted. So as to manage risk performance for their firms, the development of systematic Risk Management Framework is important for their risk management activity and risk management competency. Ultimately, we can conclude that the focusing to the systematic risk management approach could be effective on the firm's risk management performance.

• 무역상무연구
• /
• 제37권
• /
• pp.187-216
• /
• 2008

Risk regarding the possibility of loss can be especially problematic. If a loss is certain to occur, it may be planned for in advance and treated as a definite, known expense. It is when there is uncertainty about the occurrence of a loss that risk becomes an important problem. The word risk is often used in connection with insurance. No one generally accepted definition of risk exists, however. Of the many definitions, two distinctive ones are commonly used. One defines risk as the variation in possible outcomes of an event based on chance. That is, the greater the number of different outcomes that may occur, the greater the risk. Another way of expressing this concept is to state: The greater the variation around an average expected loss, the greater the risk. The second definition of risk is the uncertainty concerning a possible loss. The definition of risk as a useful one because it focuses attention on the degree of risk in given situations. The degree of risk is a measure of the accuracy with which the outcome of an event based on chance can be predicted. For now, it will serve our purpose to note the more accurate the prediction of the outcome of an event based on chance, the lower the degree of risk. After sources of risks are identified and measured, a decision can be made as to how the risk should be handled. A pure risk that is not identified does not disappear, the business merely loses the opportunity to consciously decide on the best technique for dealing with that risk. The process used to systematically manage risk exposures is known as risk management. Some persons use the term risk management only in connection with businesses, and often the term refers only to the management of pure risks. In this sense, the traditional risk management goal has been to minimize the cost of pure risk to the company. But as firms broaden the ways that they view and manage many different types of risk, the need for new terminology has become apparent. The terms integrated risk management and enterprise risk management reflect the intent to manage all forms of risk, regardless of type. International trade transaction is called between countries has features of globalism, cultural gap, long distance and long terms for the transaction. It is riskier than domestic transaction has its specific risks, such as foreign exchange risk and political risk, and requires various active risk management skills. Risks in relation to the international trade transaction are the contract risk, transit risk and payment risk, etc. The risk management in relation to the international trade transaction is to identify and measure these risks. The purpose of this study is to analyse the practical problems and its solution plan by analyzing various cases related to the risk management of bill of lading in the international trade transaction.

• 해양환경안전학회지
• /
• 제23권3호
• /
• pp.217-223
• /
• 2017

In order to assess risk as a basic step for securing safety, it requires to select risk factors and determine the frequency and the severity of the consequence of each risk factor. This research adopted common risk factors among well-known maritime risk assessment models, and proposed objective criteria to gauge the risk level of each risk factor. The starting points of risk evolution were chosen for criteria according to related studies and seafarers' experience. The rate of risk appearance over the criteria is named as the incidence of risk factor. Therefore, the total risk level is expressed as the combination of incidence of each risk factor and severity. This quantitative method would be applied to measuring and comparing the risk level of target maritime zones, and it would also be useful to survey which risk factor be focused for reducing the total risk of a certain maritime zone.

• 한국IT서비스학회:학술대회논문집
• /
• 한국IT서비스학회 2005년도 추계학술대회
• /
• pp.400-407
• /
• 2005

Project의 Quality, Cost, Delivery의 세 가지 목표를 달성하기 위해서는 프로젝트 Risk의 조기 인식 및 대처는 프로젝트 성공의 가장 중요한 요소가 되고 있다 Project Risk는 1)프로젝트의 이해관계자(고객, 협력회사)간의 재무적, 법률적 Risk [수주 Risk]와 2)프로젝트 수행상의 제품공학, 개발환경, 외부제약조건 등의 Risk [수행 Risk]로 나눌 수 있으며, 수주 Risk는 분석 결과가 수행 Risk의 식별, Monitoring에 직접적으로 반영되어야 한다. 프로젝트 수행 Risk는 조기에 식별하고 정량적/정성적 영향을 분석하여 대응계획을 수립하여 지속적으로 Monitoring함으로서 영향을 최소화할 수 있으므로 Risk를 조기 식별하고 경보할 수 있는 시스템(EWS: Early Warning System)의 구축 운영이 반드시 필요하다. 본문에서는 프로젝트 Risk에 대한 분석 및 대웅방안, 프로젝트관리시스템 및 조기경보체계의 표준, 상호간의 관계에 대하여 SK C&C에서 수립하여 적용중인 실증적인 해법을 제시 하고자 한다.

• 통상정보연구
• /
• 제14권2호
• /
• pp.295-315
• /
• 2012

본 연구에서는 기업의 핵심 요소로 꼽히고 있는 IT(information technology) 역량과 공급체인의 위험관리 요인과 기업의 사업성과 간의 구조적 관계를 규명하였다. 이를 위해서 공급체인 위험관리를 수행하고 있는 153개 기업들을 대상으로 설문조사를 진행하였고, 구조방정식모형(Structural equation model)으로 실증분석을 하였다. 먼저 기업의 IT 인프라 요인을 선행변수로, IT 활용과 공급체인 위험관리의 요인을 매개변수로 설정하였다. 기업의 사업성과 요인과 함께 연구모형에 포함시켜 실증분석을 한 결과 다음과 같은 연구결과를 얻었다. 첫째, 기업의 IT 인프라 요인은 기업의 IT 활용과 위험관리요인에 정(+)의 영향을 미쳤다. 둘째, 기업의 IT 활용 요인은 기업의 사업성과 요인에 정(+)의 영향을 미쳤다. 셋째, 공급체인의 위험관리 요인은 기업의 사업성과에 정(+)의 영향을 미쳤다. 이는 기업이 IT 인프라에 대한 투자가 이루어졌을 때 IT 활용의 수준과 위험관리의 수준이 높아져 기업의 사업성과를 향상시킬 수 있고, IT 인프라를 구축하여 공급체인 위험관리의 수준을 향상시키지만 IT 활용 수준이 높아진다고 해서 위험관리의 수준이 높아지는 것은 아니라는 연구결과를 도출하였다. 본 연구는 최근 SCM 구축 기업들의 IT 활용과 위험관리 수준의 사업성과에 영향을 미치는 것에 향후 공급체인 위험관리의 효과적인 실행을 고려한 연구가 진행되어야 하겠다.

• 무역상무연구
• /
• 제30권
• /
• pp.59-88
• /
• 2006

After sources of risks are identical and measured, a decision can be made as to how the risk should be handled. A pure risk that is not identical does not disappear ; the business merely loses the opportunity to consciously decide on the best technique for dealing with that risk. The process used to systematically manage risk exposures is known as risk management. Risk management is the logical process used by business firms and individuals to deal with their exposures to loss. It is a strategy of preloss planning for postloss resources. Besides, in the enterprise judiciary researches the textbook and the instance which relate risks, and reflects it to the written contract provision and various every manuel or holds seminar. It is a risk management which this talks generally. Here it stands but it becomes a problem the quality of type and countermeasure of risks. The purpose of this paper aims to explain adequate preventions to positively predict the risk this before being materialized, in practical section which is directly exposed to these risks in introducing international sale contracts(for example, the FOB and CIF contract) and the active management method of the risk which accompanys to the execution. And also analyzes the Lite-On case which relates with an international sale contracts.