| Article ID | Journal | Published Year | Pages | File Type |
|---|---|---|---|---|
| 6948873 | Information & Management | 2018 | 48 Pages |
Abstract
With the growing role of information technology (IT), many organizations struggle with IT-related risks. Both IT managers and IT auditors are involved in assessing, monitoring, and reporting IT risks, but this does not necessarily mean that they share the same views. In this study, we draw upon the actor-observer asymmetry perspective to understand differences in IT managers' vs. IT auditors' perceptions of risks. Through a quasi-experiment with 76 employees of a financial institution, we found that IT managers and IT auditors showed the expected actor-observer differences. Implications for both research and practice are discussed.
Related Topics
Physical Sciences and Engineering
Computer Science
Information Systems
Authors
Arno Nuijten, Mark Keil, Gert van der Pijl, Harry Commandeur,