| IT outsourcing has experienced a great development since 1990s. More and more companies turned to IT outsourcing in order to keeping necessarily flexibility to adapt global economy which changed fast, and focus on their core competence in the competent market. But, because there are many risks during the IT outsourcing process, many cases had failed. How to solve the problem of IT outsourcing has become an important research field, especially IT outsourcing is still in the start phase in our country. The present thesis is the result of the efforts devoted to applying the theory of COBIT(Control Object for Information and Related Technology) and Risk Management to develop a risk model of common IT outsourcing process. From the view of process control, analyzing the outsourcing process and giving the corresponding risk mitigating method.COBIT is one of the important theory of internal process control, its control objective covers all IT related process in an organization. So, as a process linked by organization and its outside vendor, IT outsourcing process could be analyzed from this aspect. Identifying the risk and giving the mitigating method. Compared with regularly used IT outsourcing process , a common process is built first. Then mapping this process into the COBIT framework and using its control objective to identify risk. Finally a risk model is developed. Based on this model, some quantitive and qualitative methods are given to mitigate the risks. |
PDF Full Text Request