Umeå University's logo

umu.sePublikasjoner
EnglishSvenskaNorsk
Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Information infrastructure risk: perspectives, practices & technologies
Umeå universitet, Samhällsvetenskapliga fakulteten, Institutionen för informatik. (IT management)
2015 (engelsk)Doktoravhandling, med artikler (Annet vitenskapelig)
Abstract [en]

This dissertation investigates the nature and management of information infrastructure risks in organizations. Specifically, it examines how practitioners identify and manage threats towards their organizational aims, and suggests ways of achieving sustainable risk management, in settings characterized by the integration of information technology (IT) and organizational processes. The dissertation is motivated by the difficulties organizations encounter when attempting to leverage IT as an organizational resource and the observation that IT projects have high rates of failure despite three decades of research on and practice of risk management in Information Systems (IS). Three aspects of the underlying logic of existing research and practice on IS risk management are challenged: (1) the infrastructural character of IT is suggested to be consequential for organizational risk management, however not recognized by either IS research on risk or risk experts, (2) risk management is enacted within and across practices beyond the boundaries of formal risk management models, and subsequently, (3) risks are increasingly emergent rather than predictable. To investigate such risks and risk management processes the studies in the dissertation build on information infrastructure theory and practice theory and a qualitative approach.

As the role of IT in organizations has changed significantly over the last decades, so has both practice and research concerned with IT related risks. Research on risk in the field of IS has thus come to encompass a large variety of levels of analysis, risk levels and dimensions, organizational processes and research approaches. An analysis of the extant literature shows that despite this richness, it still does not account, or offer support, for situations characterized by a high degree of uncertainty and equivocality. In these kinds of situations, risks are typically emergent and cannot be identified or managed by the prescriptions found within the IS discourse. However, emergence has long been recognized as a characteristic of the organizational consequences of information technology. Paradoxically, while most IS scholars would recognize the socio-technical, or even sociomaterial, nature of IT, it has had little impact on research on risk in our field.

A key argument in this dissertation is that theories of technology and organizational change within IS are equally valid for practice and research on IT related risk and risk management. Information infrastructure theory has been influential in improving our understanding of the changing nature and role of contemporary IT in organizational processes. It highlights the infrastructural character of IT, technological agency, and the entanglement of IT and organizational practices. Grounded in information infrastructure theory, this dissertation examines how practitioners identify, assess, prioritize and resolve risk in their everyday organizational practices. While risk has been used as a concept to characterize the underlying logic of information infrastructure evolution, scant attention has been paid to the particularities of risk emergence and operational risk management practices. As such, existing IS research on risk management explains why risk emerges but not how. The notion of practice has recently gained momentum in the IS field for its usefulness as an analytical lens in approaching complex, dynamic and emergent phenomena, and it is reflective of information infrastructure theory in its fundamental ontological and epistemological assumptions. All of the papers included in this dissertation build, to varying degrees, on information infrastructure theory and a practice approach.

The dissertation contributes new knowledge to research on information infrastructure risk and risk management in IS by theorizing information infrastructure risk as emergent, interstitial, and rooted in practice and sociomaterial contexts.
sted, utgiver, år, opplag, sider
Umeå: Umeå universitet , 2015. , s. 77
Serie
Research reports in informatics, ISSN 1401-4572 ; 15.02
Emneord [en]
Risk, risk management, practice research, information infrastructure theory
HSV kategori
Identifikatorer
URN: urn:nbn:se:umu:diva-110665ISBN: 978-91-7601-340-3 (tryckt)OAI: oai:DiVA.org:umu-110665DiVA, id: diva2:864156
Disputas
2015-11-18, MIT-huset, sal MA121, Umeå universitet, Umeå, 13:00 (engelsk)
Opponent
Veileder
Tilgjengelig fra: 2015-10-28 Laget: 2015-10-26 Sist oppdatert: 2018-06-07bibliografisk kontrollert
Delarbeid
1. IT-adaptation challenges in the process industry: an exploratory case study
Åpne denne publikasjonen i ny fane eller vindu >>IT-adaptation challenges in the process industry: an exploratory case study
2007 (engelsk)Inngår i: Industrial management & data systems, ISSN 0263-5577, E-ISSN 1758-5783, Vol. 107, nr 9, s. 1276-1289Artikkel i tidsskrift (Fagfellevurdert) Published
Abstract [en]

Purpose – This paper seeks to identify and explore critical challenges for the process industry in information technology (IT) infrastructure integration and adaptation.

Design/methodology/approach – An exploratory case study was conducted at a paper mill and their main IT-vendor. Using a qualitative approach eight semi-structured interviews were carried out with representatives from both organizations.

Findings – The paper identifies four critical challenges in the integration and adaptation of IT-infrastructure in the process industry: integration as an ongoing process; maintaining stability in the installed base; locking the right stuff in; and balancing user value, continuity of production and compatibility.

Practical implications – Given the centrality of IT infrastructure in today’s process industries, the importance of dealing with these challenges must be emphasized. The four challenges identified in this study are of such a complexity that they can only lend themselves to the evolutionary strategy. Such a strategy is in concert with the sensibility towards risk found in the paper industry.

Originality/value – This paper contributes by building on and expanding IT-infrastructure literature, as a result of exploring IT-adaptation challenges in process industry organizations. The findings also provide managers with a valuable insight into recognizing and handling these challenges.
sted, utgiver, år, opplag, sider
Emerald Group Publishing Limited, 2007
Emneord
Integration, Communication technologies, Paper industry, Sweden
HSV kategori
Identifikatorer
urn:nbn:se:umu:diva-6945 (URN)10.1108/02635570710833965 (DOI)2-s2.0-35748939075 (Scopus ID)
Tilgjengelig fra: 2008-01-01 Laget: 2008-01-01 Sist oppdatert: 2023-03-24bibliografisk kontrollert
2. Between a rock and a hard place: facing dilemmas in IT risk management
Åpne denne publikasjonen i ny fane eller vindu >>Between a rock and a hard place: facing dilemmas in IT risk management
2018 (engelsk)Inngår i: Journal of Information Technology Theory and Application, ISSN 1552-6496, E-ISSN 1532-4516, Vol. 19, nr 3, s. 22-44Artikkel i tidsskrift (Fagfellevurdert) Published
Abstract [en]

In this paper, we extend IT risk management theory using evidence gleaned from IT-enabled process management in a Swedish pulp and paper factory. Our analyses of risk management practices in the factory’s core process revealed surprising insights. As organizational actors managed process related IT risks to ensure that the core production process was running 24/7, they generated strategic IT risks that threatened the sustainability of the process infrastructure. However, they could not manage these strategic risks without jeopardizing the 24/7 operation. Hence, they inadvertently found themselves between a rock and a hard place where they could not mitigate one high priority risk without generating another. Drawing on practice theory, we explain the observed risk management practices, introduce the notion of risk dilemmas, and discuss the practice-based view of risk as a useful approach to advancing IT risk management theory.
sted, utgiver, år, opplag, sider
Association for Information Systems, 2018
Emneord
Risk, Risk Management, Practice Theory, Information Technology
HSV kategori
Identifikatorer
urn:nbn:se:umu:diva-110659 (URN)
Merknad

Originally included in thesis in manuscript form

Tilgjengelig fra: 2015-10-26 Laget: 2015-10-26 Sist oppdatert: 2023-10-02bibliografisk kontrollert
3. Recalcitrant technologies and unfolding ontologies: exploring epistemic strategies in IT risk management
Åpne denne publikasjonen i ny fane eller vindu >>Recalcitrant technologies and unfolding ontologies: exploring epistemic strategies in IT risk management
(engelsk)Manuskript (preprint) (Annet vitenskapelig)
HSV kategori
Identifikatorer
urn:nbn:se:umu:diva-110660 (URN)
Tilgjengelig fra: 2015-10-26 Laget: 2015-10-26 Sist oppdatert: 2018-06-07
4. Information infrastructure risk: a longitudinal study of risk emergence in supplier practices
Åpne denne publikasjonen i ny fane eller vindu >>Information infrastructure risk: a longitudinal study of risk emergence in supplier practices
(engelsk)Manuskript (preprint) (Annet vitenskapelig)
HSV kategori
Identifikatorer
urn:nbn:se:umu:diva-110662 (URN)
Tilgjengelig fra: 2015-10-26 Laget: 2015-10-26 Sist oppdatert: 2018-06-07
5. Managing information infrastructure risk: problems, causes, cures
Åpne denne publikasjonen i ny fane eller vindu >>Managing information infrastructure risk: problems, causes, cures
(engelsk)Manuskript (preprint) (Annet vitenskapelig)
HSV kategori
Identifikatorer
urn:nbn:se:umu:diva-110664 (URN)
Tilgjengelig fra: 2015-10-26 Laget: 2015-10-26 Sist oppdatert: 2018-06-07

Open Access i DiVA

Information Infrastructure Risk(934 kB)2166 nedlastinger
Filinformasjon
Fil FULLTEXT02.pdfFilstørrelse 934 kBChecksum SHA-512
71cbac99fdef5288d50c7b949b96141fd7ffdae2bd75adeed059d9293cb8f93c6cea38d7bb91e3049b9c4d528cac5ee240638dd467ae3bbd59aa63b85dee4b34
Type fulltextMimetype application/pdf
Spikblad(75 kB)108 nedlastinger
Filinformasjon
Fil SPIKBLAD01.pdfFilstørrelse 75 kBChecksum SHA-512
ebac0c23213e4fbf3449fe5d0b161fc630a46c341b4a3339c809b09309c9b8d481f288a3069850849ad8bdce3af6958b568c7632cc71b100f63b4e4c9b1fa426
Type spikbladMimetype application/pdf

Person

Öbrand, Lars

Søk i DiVA

Av forfatter/redaktør
Öbrand, Lars
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar
Totalt: 2170 nedlastinger
Antall nedlastinger er summen av alle nedlastinger av alle fulltekster. Det kan for eksempel være tidligere versjoner som er ikke lenger tilgjengelige

isbn
urn-nbn

Altmetric

isbn
urn-nbn
Totalt: 2681 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • ieee
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
Umeå universitetsbibliotek
|
Logga in
|
Manualer
|
Kontakta biblioteket