TY - GEN
T1 - Classifying information systems risks
T2 - 46th Annual Hawaii International Conference on System Sciences, HICSS 2013
AU - Wiesche, Manuel
AU - Keskinov, Hristo
AU - Schermann, Michael
AU - Krcmar, Helmut
PY - 2013
Y1 - 2013
N2 - Understanding the risks caused by relying on information systems is an enduring research stream in the Information Systems (IS) discipline. With information systems becoming ubiquitous, IS risks permeate every aspect of life and effective risk mitigation increasingly requires a holistic structure. We use the largest and oldest publicly available risk collection to understand the developments of IS risks, its characteristics, and interdependencies. We review this data set using text mining techniques. Interestingly, we find that some types of IS risks tend to reoccur. We find that this database provides rich opportunities for learning from previous mistakes, which could help avoid similar problems in the future. Our contributions to theory includes a risk-taker's view on contemporary information systems, a differentiation between controllable and reoccurring risks, and the increased interconnection of IS risks. As implications for practice we provide a basis for learning from past IS risks and an initial structure.
AB - Understanding the risks caused by relying on information systems is an enduring research stream in the Information Systems (IS) discipline. With information systems becoming ubiquitous, IS risks permeate every aspect of life and effective risk mitigation increasingly requires a holistic structure. We use the largest and oldest publicly available risk collection to understand the developments of IS risks, its characteristics, and interdependencies. We review this data set using text mining techniques. Interestingly, we find that some types of IS risks tend to reoccur. We find that this database provides rich opportunities for learning from previous mistakes, which could help avoid similar problems in the future. Our contributions to theory includes a risk-taker's view on contemporary information systems, a differentiation between controllable and reoccurring risks, and the increased interconnection of IS risks. As implications for practice we provide a basis for learning from past IS risks and an initial structure.
UR - http://www.scopus.com/inward/record.url?scp=84875529061&partnerID=8YFLogxK
U2 - 10.1109/HICSS.2013.130
DO - 10.1109/HICSS.2013.130
M3 - Conference contribution
AN - SCOPUS:84875529061
SN - 9780769548920
T3 - Proceedings of the Annual Hawaii International Conference on System Sciences
SP - 5013
EP - 5022
BT - Proceedings of the 46th Annual Hawaii International Conference on System Sciences, HICSS 2013
Y2 - 7 January 2013 through 10 January 2013
ER -