A major stream of information systems (IS) research examines the topic of control, which focuses on attempts to affect employee behavior as a means to achieve organizational objectives. Despite a rich history of IS control research, approximately 90 percent of the publications focus on only three IS processes: managing information systems development, managing IS outsourcing, and managing security. However, the emergence of new IS processes and technologies with distinct control challenges, such as managing enterprise architecture and managing innovation, highlights a need to consider the wider applicability of past control insights. In this paper, we first integrate existing IS control constructs and relationships into a comprehensive IS control model. Second, we apply this model to emerging IS processes to guide future research and practice. We review 65 influential IS control-related journal papers and identify five control dimensions. We then consolidate these dimensions into a single, integrated model to apply past IS control findings to the challenges of emerging information systems by posing a series of related propositions. With this paper, we position current IS control research to be increasingly applicable and relevant to tomorrow’s emerging IS opportunities and challenges.
Cram, W. Alec; Brohman, Kathryn; and Gallupe, R. Brent
"Information Systems Control: A Review and Framework for Emerging Information Systems Processes,"
Journal of the Association for Information Systems:
4, Article 2.
Available at: http://aisel.aisnet.org/jais/vol17/iss4/2