With the fast-evolving technology and the vast number of systems created everyday, it is inevitable for a company to change its information systems or information technology infrastructure. Yet, such changes may present several threats for the company. I found a lot of threats/risks, hence I decided to only list 5 to limit my scope. Some of the said threats are detailed below.
Dependencies and interoperability between this investment and others:
this means that the risks involved are that systems may not achieve the targeted results and that there will be increased possibilities for systems to be penetrating each other.
Overall risk of project failure:
this statement says that the changes that are now being implemented may not achieve the results that was expected from it.
Project resources/financial:
there might be miscalculation of life-cycle costs, lose cost controls, or poor acquisition planning.
Capability of agency to manage the investment:
certain aspects may not be achieved due to the changes implemented. Aspects such as financial management of investment, poor operational and technical controls, or reliance on vendors without appropriate cost, technical and operational controls may not be up to par.
The worst things that could happen is that the projected program effectives or business goals of the program may not be achieved.
Reliability of systems: this may be associated to have the company IT/IS lose some security and integrity and make it vulnerable.
Resources:
http://csrc.nist.gov/publications/nistpubs/800-30/sp800-30.pdf
http://csrc.nist.gov/roi/wksps0603-notes/Risk-Handout.pdf
1 comments:
it seems that most of ur factors deals with the system's output.
i gez from changing the business IT and IS.. changes where not limited in business transactions, financial reports.. and etc..
there's more..
however, it is indeed a good post!
best regardz!
Post a Comment