Dynamic real-time risk analytics of uncontrollable states in complex internet of things systems, cyber risk at the edge

The Internet of Things (IoT) triggers new types of cyber risks. Therefore, the integration of new IoT devices and services requires a self-assessment of IoT cyber security posture. By security posture this article refers to the cybersecurity strength of an organisation to predict, prevent and respond to cyberthreats. At present, there is a gap in the state of the art, because there are no self-assessment methods for quantifying IoT cyber risk posture. To address this gap, an empirical analysis is performed of 12 cyber risk assessment approaches. The results and the main findings from the analysis is presented as the current and a target risk state for IoT systems, followed by conclusions and recommendations on a transformation roadmap, describing how IoT systems can achieve the target state with a new goal-oriented dependency model. By target state, we refer to the cyber security target that matches the generic security requirements of an organisation. The research paper studies and adapts four alternatives for IoT risk assessment and identifies the goal-oriented dependency modelling as a dominant approach among the risk assessment models studied. The new goal-oriented dependency model in this article enables the assessment of uncontrollable risk states in complex IoT systems and can be used for a quantitative self-assessment of IoT cyber risk posture

Major Indian ICT firms and their approaches towards achieving quality

Of the three basic theories of innovation: the entrepreneur theory, the technology-economics theory and the strategic theory, the third one seems to be highly appropriate for the analysis of recent growth of the information and communication technology (ICT) industry in many developing countries including India. The central measure for achieving quality by the various major Indian ICT firms is widely agreed to have been the adoption of Six Sigma Methodology and various other approaches like Total Quality Management (TQM), Supply Chain Management (SCM), Customer Relationship Management (CRM), etc. It is apparent that the main objective of the firms chosen has been to increase the pace of innovation activities, irrespective of their different areas of product specialisation. Its success also depends largely on the overall improvement in infrastructure, besides active market interaction. To enable both the above, a brief highlight on the establishment of interaction and learning sites (ILSs) in every regional State in India comes to the foreground. The chapter concludes with a mention of the elements observed to be missing among the firms under consideration, and, thereby, delineating the scope for their further improvement.

Maturity model based on CMMI for governance and management of Green IT

Sustainability is a problem that is increasingly worrying organisations around the world, which has led them to adopt sustainable practices in their processes. From the point of view of one of the areas that have had the greatest impact in recent times in organisations, the area of information technology (IT), different sustainable practices have arisen in isolation, known as Green IT practices. So, a framework that organises and establishes these practices (until now isolated) is necessary in order to implement, assess, and improve the Green IT in organisations in an efficient, gradual, and integrated way. In this study, the authors propose a maturity model based on capability maturity model integration (CMMI), through which it is intended to help organisations gradually implement and improve through different levels of maturity, the governance and management of Green IT. The validations of this proposal carried out through experts and practical cases demonstrate the usefulness of this proposal when implementing, assessing, and improving the Green IT in organisations

A Management Maturity Model (MMM) for project-based organisational performance assessment

Common sense suggests that organisations are more likely to deliver successful projects if they have systems in place that reflect a mature project environment based on a culture of continuous improvement. This paper develops and discusses a Management Maturity Model (MMM) to assess the maturity of project management organisations through a customisable, systematic, strategic and practical methodology inspired from the seminal work of Darwin, Deming, Drucker and Daniel. The model presented is relevant to organisations, such as construction and engineering companies, that prefer to use the Project Management Body of Knowledge (PMBOK™ Guide) published by the Project Management Institute (PMI), but without the disadvantages of excessive time and cost commitments and a ‘one size fits all’ approach linked to rigid increments of maturity. It offers a game-changing advance in the application of project-based organisational performance assessment compared to existing market solutions that are unnecessarily complex. The feasibility of MMM is field-tested using a medium-sized data centre infrastructure firm in Tehran

Virtualising Process Assessments to Facilitate Continual Service Improvement in IT Service Management

The IT Service Management (ITSM) industry has defined processes as best practices in the widely-accepted IT Infrastructure Library (ITIL) framework. However, studies on the measurement of ITSM process improvement are scant. Our research addressed the dual problems of the lack of transparency and the need for efficiency in ITSM process assessment. Using the Design Science Research methodology, we developed a Software-mediated Process Assessment (SMPA) approach that enables assessment of ITSM processes. The SMPA approach includes process selection; an online survey to collect assessment data; measurement of process capability; and reporting of process improvement recommendations. We implemented a decision support system (DSS) to automate the SMPA approach and evaluated it at two IT service providers. The evaluations indicated that the SMPA approach supports decision-making on process improvements. The findings provided design knowledge of virtualisation in ITSM process assessment and how this may facilitate continual service improvement

Virtualising process assessments to facilitate continual service improvement in IT service management

The IT Service Management (ITSM) industry has defined processes as best practices in the widely accepted IT Infrastructure Library (ITIL) framework. However, studies on the measurement of ITSM process improvement are scant. Our research addressed the dual problems of the lack of transparency and the need for efficiency in ITSM process assessment. Using the Design Science Research methodology, we developed a Software-mediated Process Assessment (SMPA) approach that enables assessment of ITSM processes. The SMPA approach includes process selection; an online survey to collect assessment data; measurement of process capability; and reporting of process improvement recommendations. We implemented a decision support system (DSS) to automate the SMPA approach and evaluated it at two IT service providers. The evaluations indicated that the SMPA approach supports decision-making on process improvements. The findings provided design knowledge of virtualisation in ITSM process assessment and how this may facilitate continual service improvement

Corporate entrepreneurship capability model for contractors

This thesis explores the implementation of corporate entrepreneurship (CE) to support contractors’ business success based on the experiences of contractors in Indonesia. Furthermore, an assessment model was developed to determine the capability of contractors to implement CE; thereby providing a foundation for contractors to develop appropriate corporate strategies to move from their existing level to their target level. An exploratory research strategy was used to investigate the implementation of CE by contractors. Semi-structured interviews of top managers of contractors in Indonesia have been conducted to explore the experiences of contractors to implement CE. The data was analysed using inductive thematic analysis. A coding process has been carried out to generate themes that will be considered as key factors of CE for contractors. NVivo 10 software has been used to carry out the coding process. Twenty one key factors of CE for contractors were identified. These key factors are categorised into five dimensions of CE: autonomy, competitive aggressiveness, innovativeness, proactiveness and risk taking that have been adopted to explore the implementation of CE in contractors. Furthermore, a Corporate Entrepreneurship Capability Model (CECM) has been developed based on the concept of the Capability Maturity Model (CMM) to assess the capability level of contractors to implement CE. The expert review approach has been adopted to justify the quality of the CECM. This model was reviewed by ten academics from universities in Indonesia. Then case studies were carried out on three contractors in Indonesia to assess the practical application of the CECM. This study expands the boundaries of construction management and entrepreneurship theories for new areas of research and opens broad opportunities for further study. The study also offers contractors a reference to implement CE as well as a tool to assess their entrepreneurial orientation in order to have a foundation from which to develop a strategy that supports their business success

Towards a taxonomy of process quality characteristics for assessment

Previous assessment of process quality have focused on process capability (i.e. the ability of a process to meet its stated goals). This paper proposes a taxonomy of alternative process quality characteristics based on intrinsic and extrinsic quality attributes. The ultimate goal of this taxonomy is to provide a framework to conduct process assessments using different process quality aspects. Such a framework would considerably broaden process quality perspectives beyond the primary measure of process capability. It would also allow practitioners to identify and evaluate relevant quality characteristics for processes based on specific contexts and implications. For the process assessment model developers, it offers a list of process quality characteristics that could be used to develop relevant process measurement frameworks