我國IT治理之個案研究

Yen-Ling Chen; 陳燕玲

請用此 Handle URI 來引用此文件： http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/34288

完整後設資料紀錄

DC 欄位	值	語言
dc.contributor.advisor	陳國泰(Gou-Tai Chen)
dc.contributor.author	Yen-Ling Chen	en
dc.contributor.author	陳燕玲	zh_TW
dc.date.accessioned	2021-06-13T06:01:32Z	-
dc.date.available	2006-07-03
dc.date.copyright	2006-07-03
dc.date.issued	2006
dc.date.submitted	2006-06-22
dc.identifier.citation	參考文獻一、中文部份 1. Robert K. Yin著，尚榮安譯，個案研究法，台北市，弘智文化，2004。二、英文部份 2. Brown, C. “Examining the Emergence of Hybrid Governance Solutions: Evidence from A Single Case Site,” Information Systems Research, Vol.8, Iss.1, PP.69-94, 1997. 3. Brown, E. A., and Gerald, G. G., “Framing the Frameworks: A Review of IT Governance Research,” Communications of the Association for Information Systems, Vol.15, PP.696-712, 2005. 4. Weaver, C. 'Text Support,' Computing Canada, Willowdale, Vol.15, Iss.1, P.22, 2006. 5. Musson, D., and Ernest, J., “The Broken Link: Corporate Governance and Information Technology,” Australian Accounting Review, Melbourne, Vol.15, Iss.3, PP.11-19, 2005. 6. Everett, J. “CORPORATE GOVERNANCE : Performance Vehicles - Revving up A Value Driver; The effective use of IT has the potential to transform an enterprise and contribute to stakeholder value. So how can executives and boards add value through IT governance?” New Zealand Management, Auckland, P.70, 2005. 7. Hermanson, D. R., Hill, M. C., and Ivancevich, D. M., “Information Technology-Related Activities of Internal Auditors,” Journal of Information Systems, Vol.14, PP.39-53, 2000 supplement. 8. Huber, N. “IT Looks the Weak Link in Compliance,” Computer Weekly, P.4, 2004. 9. ITGI, “COBIT: Audit Guidelines”, 3rd ed, IT Governance Institute, 2002. 10. ITGI, “COBIT: Board Briefing on IT Governance”, 2rd ed, IT Governance Institute, 2003. 11. Webster, J., and Richard, T. W., “Analyzing the Past to Prepare for the Future: Writing A Literature Review,” MIS Quarterly, Vol.26, No 2, P.13, 2000. 12. Chi, J. H. “IT Governance Regulation - An Asian Perspective,” Information Systems Control Journal, Vol.2, PP.21, 2005. 13. Justin, R. “Trust and Strong Business Culture Identified as Key to IT Governance,” Computer Weekly, Sutton, P.48, 2006. 14. Kambil, A., and Lucas, H. C. J., “The Board of Directors and Information Technology,” Communications of the Association for Information System, Vol8, Iss.3, PP.80-91, 2002. 15. Hadden, B. L., DeZoort, F. T., and Hermansom, R. D., “IT Risk Oversight: The Roles of Audit Committees, Internal Auditors, and External Auditors,” Internal Auditing, Boston, Vol.18, Iss.6, P.28, 2003. 16. Marios, D. “Sarbanes-Oxley and IT Governance: New Guidance on IT Control and Compliance,” EDPACS, Reston, Vol.31, Iss.10, PP.1-14, 2004. 17. Nigel, P. “IT Governance and Audit,” Accountancy SA, P.35, 2003. 18. Sambamurthy, V., and Zmud, R. W., “Arrangements for Information Technology Governance Theory of Multiple Contingencies,” MIS Quarterly, Vol.23, Iss.2, PP.61-90, 1999. 19. Tellis, W. “Application of A Case Study Methodology,” The Qualitative Report, Vol.3, Number 3, 1997. 20. Trites, G. “Director Responsibility for IT Governance,” International Journal of Accounting Information Systems, Vol.5, Iss.2, PP.89-100, 2004. 21. Vlahakis, P. A., Wintner, J. M., and Cammaker, J. R., “Understanding the Sarbanes-Oxley Act of 2002,” Corporate Governance Advisor, Vol.10, Iss.5, PP.13-17, 2002. 22. Weill, P., and Broadbent, M., “Leveraging the New Infrastructure: How Market Leaders Capitalize on Information Technology,” Harvard Business School Press, Boston, MA, 1998. 23. Weill, P. “Don’t Just Lead Govern: How Top-Performing Firms Govern IT,” MIS Quarterly Executive, Vol.3, Iss.1, PP.1-17, 2004. 24. Williams, P. “Optimising Returns From IT-Related Business Investments,” Information Systems Control Journal, Vol.5, P.41, 2005. 三、網站部分 25. 孫強、郝亞斌、郝曉玲、孟秀轉，IT治理:中國信息化發展的必由之路， http://www.ccidnet.com/，2004。 26. 孫強、郝亞斌，建立完善的資訊化監管與服務制度框架體系， http://www.ccidnet.com/，2004。 27. Weill, P. and Ross, J. W.,著，佳禾譯，IT治理的十大軍條，http://www.ccidnet.com/，2005。 28. 陳瑞祥，資訊技術治理，安侯建業會計師事務所，http://www.kpmgsecurity.com.tw/file/IT%20Gvoern.ppt#1 29. IT Governance institute and CobiT , http://www.itgi.org/ 30. Information Systems Audit and Control Association, http://www.isaca.com 31. “The STATE of the CIO 2006”, CIO Management, http://www.cio.com/state, 2006.
dc.identifier.uri	http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/34288	-
dc.description.abstract	論文摘要對許多組織而言，資訊與其支援技術代表該組織最有價值的資產，而且，競爭和不斷變化的商業環境也要求企業充分利用資訊技術實現更快的交付速度及更低的成本。因此，有效的公司治理與風險管理必然需要有效的IT治理及IT風險管理。亞洲地區對於IT治理的認知並不普遍，未能藉由良好的管理，充分利用資訊科技所能帶來的利益。本研究以個案研究方式，由IT治理之內部控制點分析企業於資訊管理上所產生之現象及問題，並以IT治理之五大領域為基礎提供實務界資訊管理上之相關建議。本研究深入訪談的對象為分屬五種不同產業的五家公司，其中包括了飯店業、醫藥生化業、機械業、電子業及政府機關，經訪談結果指出，IT治理之五大領域中，最受企業重視者為風險管理，最缺乏者為績效衡量；各個受訪公司資訊部門主管對於風險管理皆有一致的共識，且於此方面花費相當的時間及成本，但對於系統所提供的服務效能水準卻未訂定事前之標準，更未於事後定期評估其實際之績效。本研究就深入訪談結果，於企業資訊管理上給予以下五點建議：1、重視IT策略擬定，確保IT策略與企業策略目標一致；2、重視IT投資時之效益評估；3、加強內部稽核人員之IT相關專業知識；4、注重IT人員之訓練並提供合理之升遷管道；5、訂定有效之績效衡量指標，定期衡量IT績效。	zh_TW
dc.description.abstract	Abstract Requirements for increased IT quality, decreased delivery time and continuously improving service levels are receiving higher emphasis within tighter cost constraints. Information and the technology that supports it represent many organizations' most valuable asset. Therefore, effective corporation governance and risk management need effective IT governance and the risk management of IT. However, the awareness of IT governance is not widespread in the Asia region. Organizations couldn’t take advantage of effective management to earn profits. This research uses the framework of internal control of IT to analyze the phenomenon and the questions of enterprises’ information governance by case study and provides related suggestions of information management to the industry on the basis of the five areas of IT governance. This research interviewed five different companies in five industries including hotel industry, medical biochemistry industry, machinery industry, electronics industry, and government departments. The interview result points out those enterprises pay much attention to risk management but do not concern with performance evaluation. Every director of the information department in all companies I have interviewed has common consensus on the risk management and spends much time and cost on this field. But they do not establish the standard of effectiveness level for the system service and even do not evaluate the actual performance periodically. This research provides five suggestions of business information governance through the result: 1.Ascertaining that IT strategy is aligned with enterprise strategy. 2. Stressing importance of the effectiveness evaluation of IT investment. 3. Enhancing the IT-related expertise of internal auditors. 4. Emphasizing the training of IT staffs and providing reasonable promotion policy. 5. Setting up some effective indexes for performance measurement and measuring the performance periodically.	en
dc.description.provenance	Made available in DSpace on 2021-06-13T06:01:32Z (GMT). No. of bitstreams: 1 ntu-95-R93722041-1.pdf: 773977 bytes, checksum: e161cd9d911ae9843583d8932209b80b (MD5) Previous issue date: 2006	en
dc.description.tableofcontents	目錄第一章　緒論………………………………………….….………1 第一節研究背景…………………………………….….………1 第二節研究動機……………………………………..…………2 第三節研究目的……………………………………..…………3 第四節研究流程………………………………………..………4 第二章　文獻探討………………………………………..…...6 第一節 IT治理的意涵…………………………………………..6 第二節 IT治理的五大領域…………………………….……...20 第三節 IT治理的建構………………………………….……...28 第四節 IT治理的挑戰………………………………….……...35 第三章　研究設計………………………………………………39 第一節理論架構……………………………………. .….….…39 第二節研究方法……………………………………. .….….…41 第三節內控評估理論……………………………………….…44 第四節訪談設計……………………………………. .….….…48 第四章　研究分析………………………………………………53 第一節跨個案訪談內容之分析整理………………. .….….…53 第二節整體歸納分析………………………………. .….….…59 第五章　結論與建議…………………………………………….……90 第一節研究結論…………………………………………….…90 第二節研究限制…………………………………………….…94 第三節實施IT治理之建議…………………………………...95 第三節後續研究建議……………………………………….…98 參考文獻…………………………………………………..……………99 附錄一個案研究計畫書………… …….…….……….…………103 附錄二深入訪談記錄………… …….……. ……………………113
dc.language.iso	zh-TW
dc.subject	IT governance	en
dc.subject	risk management	en
dc.subject	resource management	en
dc.subject	performance measurement	en
dc.subject	strategy alignment	en
dc.subject	value delivery	en
dc.title	我國IT治理之個案研究	zh_TW
dc.title	A case study of IT governance in Taiwan	en
dc.type	Thesis
dc.date.schoolyear	94-2
dc.description.degree	碩士
dc.contributor.oralexamcommittee	林世銘(Shi-Ming Lin),季延平(Yan-Ping Ji)
dc.subject.keyword	IT治理,策略調整,價值傳遞,風險管理,資源管理,績效衡量,	zh_TW
dc.subject.keyword	IT governance,strategy alignment,value delivery,risk management,resource management,performance measurement,	en
dc.relation.page	165
dc.rights.note	有償授權
dc.date.accepted	2006-06-22
dc.contributor.author-college	管理學院	zh_TW
dc.contributor.author-dept	會計學研究所	zh_TW
顯示於系所單位：	會計學系

文件中的檔案：

檔案	大小	格式
ntu-95-1.pdf 未授權公開取用	755.84 kB	Adobe PDF

顯示文件簡單紀錄

系統中的文件，除了特別指名其著作權條款之外，均受到著作權保護，並且保留所有的權利。