Modern businesses depend upon information technologies for nearly every facet of enterprise operations. IT has provided significant productivity and agility benefits to companies that make the investment. However, there are also risks associated with the reliance on IT.
In the 2009 article, “Governing Information Technology Risk,” Parent and Reich discuss the impact of businesses’ reliance on IT when security risks are realized and become issues. (Parent & Reich, 2009) Parent and Reich analyze the role of governance in the mitigation if IT risks based upon a survey of six firms and a review of literature related to IT governance. (Parent & Reich, 2009)
Parent and Reich’s article begins with a review of recent examples of companies that made an investment in IT, but failed to mitigate the risks. As a result, the article illustrates, the firms’ experienced sudden and impactful decreases in market capitalization, especially in the form of decreased stock prices. The authors proceed to describe the role of IT governance in the mitigation of risks associated with relying upon information technologies. Following the description of the types of governance, Parent and Reich explain the selection of firms for their survey and the design of the survey. Finally, the authors analyze the survey results. The article concludes that regardless of the governance model adopted by a firm, the Board of Directors must be an active proponent of the governance initiative. Finally, the authors present two tools to assist Boards with effective governance: a business process called, the “IT Risk Governance Chain,” and a risk taxonomy called, the “Director’s Dashboard.” (Parent & Reich, 2009)
Modern life depends upon information technologies. The dependence upon IT provides significant value, however there are also risks. Researchers like Parent and Reich provide valuable analysis of the benefits of relying on IT, while managing the associated risks. (Parent & Reich, 2009)
Parent, M., & Reich, B. H. (2009). Governing Information Technology Risk. [Article]. California Management Review, 51(3), 134-152.