The concept of IT risk management culture is an important topic in IS research because culture helps facilitate the successful implementation/adoption of ITRM frameworks. In this paper we develop an IT risk management (IT-RM) framework based on Cameron and Quinn’s model involving four dimensions of culture. Each cultural dimension is described in terms of how they relate to the implementation of IT-RM initiatives. Our contribution is to illustrate the utility of the framework by linking the four general cultural dimensions to propose a conceptual model of IT-RM values and beliefs. By doing so we present a necessary step in developing the concept of IT-RM culture and moving frameworks such as COBIT5 towards a more comprehensive framework based on systemic empirical research.
CITATION STYLE
Azizi, N., & Rowlands, B. (2020). Developing an IT Risk Management Culture Framework. In Lecture Notes in Information Systems and Organisation (Vol. 35, pp. 483–491). Springer. https://doi.org/10.1007/978-3-030-34269-2_33
Mendeley helps you to discover research relevant for your work.