• 대한산업공학회지
• /
• 제28권1호
• /
• pp.44-56
• /
• 2002

For the risk analysis and risk assessment techniques to be effectively applied to the field of information technology (IT) security, it is necessary that the required activities and specific techniques to be applied and their order of applications are to be determined through a proper risk management model. If the adopted risk management model does not match with the characteristics of host organization, an inefficient management of security would be resulted. In this paper, a risk management model which can be well adapted to Korean domestic IT environments is proposed for an efficient security management of IT. The structure and flow of the existing IT-related risk management models are compared and analysed, and their common and/or strong characteristics are extracted and incorporated in the proposed model in the light of typical threat types observed in Korean IT environments.

• 한국건설관리학회논문집
• /
• 제6권6호
• /
• pp.81-89
• /
• 2005

건설사업은 위험에 대한 노출수위가 크기 때문에 프로젝트의 공정을 관리하는 적극적인 위험관리가 강하게 요구되고 있으나 현재의 일반적인 공정관리기법은 위험인지 및 위험분석을 하기에는 부적합한 것이 사실이다. 따라서 본 연구는 현재의 공정관리 문제점을 개선하기 위한 공정관리 모델의 개발을 목적으로, 건설현장에서 실질적 인 위험관리를 수행할 수 있는 모델을 개발하였다. 위험관리에 초점을 둔 새로운 공정관리모델은 주공정 관리 및 위험주공정 관리를 함께 수행할 수 있을 것이다.

• 디자인학연구
• /
• 제16권4호
• /
• pp.69-78
• /
• 2003

웹 디자인 프로젝트에서 리스크 매니지먼트는 매우 중요한 프로젝트 매니지먼트 항목 중 하나이다. 리스크 매니지먼트란 웹 디자인 프로젝트 위기사항을 피하기 위하여 시간을 가지고 리스크의 원인을 찾아내어 적절한 대응책을 강구하여 프로젝트의 최종 목표를 성공적으로 수행하는데 있다. 즉 프로젝트 3대 요소인 일정, 비용, 품질을 만족하기 위한 프로세스이다. 본 논문은 첫째, 웹 디자인 프로젝트 매니지먼트의 개념 및 목적, 프로세스와 지식 영역을 살펴보고 둘째, 웹 디자인 프로젝트 기 계획 단계에서 리스크 매니지먼트 계획에 대한 체계적인 리스크 매니지먼트 프로세스와 리스크 관리 모델을 제안하고 있다. 세 째는 제시한 리스크 매니지먼트 모델의 표준화 및 모델 화의 타당성을 실제 사례인 E사 프로젝트를 통해 검증하고 있다.

• 한국IT서비스학회지
• /
• 제14권3호
• /
• pp.117-129
• /
• 2015

For the continuous growth of firms, the contributions of effective risk management system are required. This research analyzes the impact on the firm's performance related to risk management structure which includes the risk management system, risk management activity and risk management competency. In this research, the structural equation model considering the variable which contains enterprise risk management system, risk management activity and risk management competency was suggested. Also risk management organization and management procedures are identified as in enterprise risk management system. The implementation activity and control activity were the factors related in risk management activity. And risk management competency can be described as the response level of managing risk in outside and inside the firms' environment. Finally this model was analysed empirically for 112 firms in Korea using SPSS 18.0 and Amos 16.0. As the results, the suggested hypothesis were adopted. So as to manage risk performance for their firms, the development of systematic Risk Management Framework is important for their risk management activity and risk management competency. Ultimately, we can conclude that the focusing to the systematic risk management approach could be effective on the firm's risk management performance.

• Journal of Information Technology Applications and Management
• /
• 제21권4호
• /
• pp.173-186
• /
• 2014

This study outlines possible risk factors in the SCM of a company and correlates risk assessment, the strategy of risk management, and the supply chain performance. The data is surveyed from an international Korean company and is analyzed by the structure equation model of actual proof. The research model verifies the correlation between the risk assessment, the strategy of risk management, and the supply chain performance as dependent variables after the risk factors of the SCM are defined as independent variables. The research shows that there are consecutive links among the risk factors of the SCM, the risk assessment, and the strategy of risk management. The strategy of risk management was conclusively determined to have an effect on supply chain performance. Therefore, improving the supply chain performance of a company requires the constructive process for risk management based on a correlation between risk assessment and the strategy of risk management.

• 대한안전경영과학회:학술대회논문집
• /
• 대한안전경영과학회 2004년도 춘계학술대회
• /
• pp.271-276
• /
• 2004

The risk assessment model is an important subsystem for effective establishment and operation of EMS (environment management system). In case of poor risk assessment long-term and large-scale failure expense might be brought. Managing policy, target and other indices based on risk assessment can guarantee successful EMS. In this paper, we aim at comparative analysis of various risk methods and propose an alternative risk assessment model for EMS.

• 대한토목학회논문집
• /
• 제42권2호
• /
• pp.239-248
• /
• 2022

최근 건설환경의 변화에 따른 건설프로젝트에서 리스크는 현저하게 증가하고 있다. 리스크를 기회로 인식하는 적극적인 리스크관리가 요구된다. 본 연구의 목적은 Kano 모델, Timko CSC (Customer Satisfaction Coefficient), ASC (Average Satisfaction Coefficient)를 활용한 비교 분석을 통해 중요도 결정 방법의 리스크관리 모델을 제안하는 것이다. 선행연구를 바탕으로 델파이기법을 활용하여 실무자 면담을 통해 Kano 모델을 수정한 설문지를 통해 리스크관리 요인 결정의 타당성을 검토한다. 이를 통해 국내 건설프로젝트 실무자가 인식하는 핵심 리스크관리 요인을 선정하여 적합한 리스크관리 모델을 제시한다. 연구 결과, 건설프로젝트 리스크관리 검증을 위해 개발된 Kano 모델은 실무자의 리스크관리를 검증하는데 유효한 것으로 평가되었다. 본 연구에서 제시한 Kano 모델이 건설프로젝트 리스크관리의 중요도를 검증하는 데에 적극적으로 활용되기를 기대한다.

• 디지털산업정보학회논문지
• /
• 제5권2호
• /
• pp.133-140
• /
• 2009

In the paper, we proposed the systematical and quantitative software risk management methodology based on risk analysis model. A software risk management consists of the basic risk management method(BRIMM) and the detailed risk management method(DRIMM). BRIMM is applied to unimportant phases or the phase which also the risk factor does not heavily influence to project. DRIMM is used from the phase which influences highly in project success or the phase where the risk factor is many. Fulfilling risk management combined two methods, we can reduce project's budget, term and resource's usage, and prevent risk with the optimum measures obtained by the exact risk analysis.

• Journal of Information Processing Systems
• /
• 제10권2호
• /
• pp.240-255
• /
• 2014

Cloud computing has increasingly been drawing attention these days. Each big company in IT hurries to get a chunk of meat that promises to be a whopping market in the future. At the same time, information is always associated with security and risk problems. Nowadays, the handling of these risks is no longer just a technology problem, with a good deal of literature focusing on risk or security management and framework in the information system. In this paper, we find the specific business meaning of the BMIS model and try to apply and leverage this model to cloud risk. Through a previous study, we select and determine the causal risk factors in cloud service, which are also known as CSFs (Critical Success Factors) in information management. Subsequently, we distribute all selected CSFs into the BMIS model by mapping with ten principles in cloud risk. Finally, by using the leverage points, we try to leverage the model factors and aim to make a resource-optimized, dynamic, general risk control business model for cloud service providers.

• 한국경영과학회지
• /
• 제20권1호
• /
• pp.85-99
• /
• 1995

Increasingly, risk analysis is becoming important ingredients in achieving the successful implementation and application in the area of the project management. The project management system is designed to manage or control the project resources on a given activity within time, cost and performance so called TPPM (Total Productive Project Management). In this research, a risk analysis model misproposed to identify potential problem areas, quantify the risks, and generated the chice of the action that can be taken to reduce the risk. In addition two analysis models are proposed : 1) risk factor model and 2) network simulation model using VERT (Venture Evaluation and Review Technique ). The objective of the remodels is to estimate the schedule, cost performance risks. These proposed quantitative models for project risk analysis are proving its value for the project managers who need to assess the risk of changes in cost, schedule, or performance. The proposed models will be used in the area of project selection, evaluation and the allocation of project resources.