A maturity grid-based method for assessing communication in business-IT alignment
- Authors: Coertze, Jacques Jacobus
- Date: 2016
- Subjects: Business communication , Management information systems
- Language: English
- Type: Thesis , Doctoral , DPhil
- Identifier: http://hdl.handle.net/10948/6740 , vital:21139
- Description: This thesis reports on the research undertaken to develop a method for organisations to assess human communication between their business and IT personnel as part of business–IT alignment. The research described in this thesis involves (i) a literature review in business–IT alignment and related fields, such as management studies and communication science; (ii) a Delphi study conducted among industry members, practitioners, and academics operating in the IT advisory, auditing and communication disciplines; and (iii) a case study of a public sector organisation in South Africa. By adopting a system-theoretic perspective on communication, this thesis proposes that communication in business–IT alignment can be seen as coordinating behaviour and a series of learning and reflection events, consequently culminating in increased mutual understanding. Various conceptualisations of communication are explored and, together with several industry elicited factors that influence communication in business–IT alignment, are incorporated into a conceptual model informing the assessment method. This research developed, applied, and tested a method whereby organisations can assess the quality of the human communication between their business and IT personnel as part of the business–IT alignment endeavour. The aim of this method is to trigger reflection on communication by considering communication philosophy and practices in business–IT alignment. The method, termed the ‘Business-IT Communication Alignment Maturity Improvement Communication Alignment Maturity Improvement (CAMI) method’, is based on a maturity grid-based approach, which stems originally from process improvement in software development and quality management. This thesis is most closely aligned with the research performed by Maier, Eckert, and Clarkson (2004, 2006), who successfully applied the maturity grid-based approach to investigate, audit and assess communication within the engineering design process. The question addressed in this thesis is whether this approach can be successfully extrapolated to the business–IT alignment context and whether it would yield similar benefits. Furthermore, the issue of whether it would offer a practical method for use in organisations is also addressed. Having applied the CAMI method at a public sector organisation, this thesis proposes that the maturity grid-based approach can indeed be extrapolated to iv the business–IT alignment context, consequently offering a viable and practical method for assessing communication in organisations. In particular, the CAMI method allows organisations to capture both their current and their desired communication situations and to expose discrepancies between the perceptions held by their business and IT personnel. These results form a basis for action planning, strategizing, and, ultimately, interventions for improvement. In conclusion, the thesis discusses further application and extension possibilities for the assessment method.
- Full Text:
- Date Issued: 2016
A framework for information security governance in SMMEs
- Authors: Coertze, Jacques Jacobus
- Date: 2012
- Subjects: Business -- Data processing -- Security measures , Management information systems -- Security measures , Computer networks -- Security measures
- Language: English
- Type: Thesis , Masters , MTech
- Identifier: vital:9810 , http://hdl.handle.net/10948/d1014083
- Description: It has been found that many small, medium and micro-sized enterprises (SMMEs) do not comply with sound information security governance principles, specifically the principles involved in drafting information security policies and monitoring compliance, mainly as a result of restricted resources and expertise. Research suggests that this problem occurs worldwide and that the impact it has on SMMEs is great. The problem is further compounded by the fact that, in our modern-day information technology environment, many larger organisations are providing SMMEs with access to their networks. This results not only in SMMEs being exposed to security risks, but the larger organisations as well. In previous research an information security management framework and toolbox was developed to assist SMMEs in drafting information security policies. Although this research was of some help to SMMEs, further research has shown that an even greater problem exists with the governance of information security as a result of the advancements that have been identified in information security literature. The aim of this dissertation is therefore to establish an information security governance framework that requires minimal effort and little expertise to alleviate governance problems. It is believed that such a framework would be useful for SMMEs and would result in the improved implementation of information security governance.
- Full Text:
- Date Issued: 2012