论文信息 - Managing the Risk of IT Outsourcing

Managing the Risk of IT Outsourcing

While it can bring several benefits, IT outsourcing entails some risks. As is the case in other types of investments or business ventures, the risk associated with an IT outsourcing project must be evaluated and managed. This paper proposes a framework for the management of IT outsourcing risk and assesses the usefulness of the framework using data gathered about two cases of system development outsourcing. After providing a conceptual definition of risk and of risk exposure, the paper presents the proposed risk management framework. The two cases are then described, along with the evaluation of the level of risk exposure of each and the risk management mechanisms that were included in the contracts. The results of the study suggest that, by charting the various items that contribute to risk exposure and by specifically applying appropriate mechanisms that can target those elements with higher levels of risk exposure, outsourcing risk can be adequately managed.

[1] Abraham Seidmann,et al. Two dimensions of software acquisition , 1996, CACM.

[2] B Wahlström,et al. Applications of probabilistic risk assessments: the selection of appropriate tools. , 1991, Risk analysis : an official publication of the Society for Risk Analysis.

[3] P J Phillips,et al. A cautionary tale. , 1997, Australian family physician.

[4] C. Prahalad,et al. The core competence of the corporation’, Harvard Business Review, Vol. pp. . , 1990 .

[5] Barry W. Boehm,et al. Software Risk Management , 1989, ESEC.

[6] D. Sappington. Incentives in Principal-Agent Relationships , 1991 .

[7] Suzanne Rivard,et al. Toward an Assessment of Software Development Risk , 1993, J. Manag. Inf. Syst..

[8] Colin F. Camerer,et al. Taking Risks: The Management of Uncertainty , 1988 .

[9] H. Raghav Rao,et al. Information systems outsourcing , 1996, CACM.

[10] Timo Saarinen,et al. Outsourcing of Information Systems Services in Finnish Companies , 1995 .

[11] C. Prahalad,et al. The Core Competence of the Corporation , 1990 .

[12] W. Dugger. The Economic Institutions of Capitalism , 1987 .

[13] Kenneth R. MacCrimmon,et al. Taking Risks, the Management of Uncertainty , 1987 .

[14] R. Roll,et al. The Hubris Hypothesis of Corporate Takeovers , 1986 .

[15] Uma G. Gupta,et al. OUTSOURCING THE IS FUNCTION , 1992 .

[16] John C. Anderson,et al. Assessing Project Implementation Risk: A Methodological Approach , 1979 .

[17] Suzanne Rivard,et al. Assessing the risk of IT outsourcing , 1998, Proceedings of the Thirty-First Hawaii International Conference on System Sciences.

[18] M. Field. Selling One's Birth-Rights , 1989 .

[19] B. Boehm. Software risk management: principles and practices , 1991, IEEE Software.

[20] Y. Barzel,et al. Measurement Cost and the Organization of Markets , 1982, The Journal of Law and Economics.

[21] O. Williamson. The economic institutions of capitalism , 1985 .

[22] S. Winter,et al. Understanding corporate coherence: Theory and evidence , 1994 .

[23] R. Langlois,et al. Networks and innovation in a modular system: Lessons from the microcomputer and stereo component industries , 1992 .

[24] K. Eisenhardt. Agency Theory: An Assessment and Review , 1989 .

[25] H. Demsetz,et al. Production, Information Costs, and Economic Organization , 1975, IEEE Engineering Management Review.

[26] M. J. Earl,et al. The Risks of Outsourcing IT , 1996 .

[27] H. Raghav Rao,et al. A two-level investigation of information systems outsourcing , 1996, CACM.

[28] Sanford J. Grossman,et al. The Costs and Benefits of Ownership: A Theory of Vertical and Lateral Integration , 1986 .

[29] J. Cross. IT Outsourcing: British Petroleum's Competitive Approach , 1995 .