Research on Strategic IT/IS Management and Digitalization

The research on Strategic Information Management is concerned with the development of IT/IS strategies, the management of IT/IS investments, investment portfolios, and programmes, as well as with the sourcing, organization and governance of the corporate IT/IS function.

Governing the Dark Side of Digitalization: Cyber Risk

Ongoing digitalization demands an even closer intertwinement of business and technology strategies, bringing information and digital technology (I/DT) to the board level. Executive and supervisory boards are ultimately accountable for strategy and control. Latest legislation even makes board members personally liable for damages caused if cyberrisks are taken imprudently or managed recklessly. Yet, field evidence reveals only limited board involvement in the governance of I/IDT and even less if it comes to the downside of digitalization, the governance of the risks involved in increasingly digitalzing business. Studies document missing understanding, a lack practical guidance on how to govern cyberrisk, and miscommunication between boards and (technical) cybersecurity experts as major problems. Our project aims at overcoming these deficiencies by educating boards, providing them with tools to overlook cybersecurity on an organizational level, and facilitating communication between boards and cybersecurity experts.

Practicability of IT services in operational use

Analysis of challenges faced by organizations introducing IT Service Management, in particular concerning the definition and contracting of IT Services.