Summary Chapter 11 : Managing knowledge

Summary Chapter 11 : Managing knowledge

This chapter are related on what is the role of knowledge management and knowledge management programs in business. Actually, Knowledge management is a set of processes to create, store, transfer, and apply knowledge in the organization. Much of a firm’s value depends on its ability to create and manage knowledge. Knowledge management promotes organizational learning by increasing the ability of the organization to learn from its environment and to incorporate knowledge into its business processes. There are three major types of knowledge management systems: enterprise-wide knowledge management systems, knowledge work systems, and intelligent techniques.

Enterprise-wide knowledge management systems are firm wide efforts to collect, store, distribute, and apply digital content and knowledge. Enterprise content management systems provide databases and tools for organizing and storing structured documents and tools for organizing and storing semi structured knowledge, such as e-mail or rich media. Knowledge network systems provide directories and tools for locating firm employees with special expertise who are important sources of tacit knowledge. Often these systems include group collaboration tools (including wikis and social bookmarking), portals to simplify information access, search tools, and tools for classifying information based on a taxonomy that is appropriate for the organization. Enterprise-wide knowledge management systems can  considerable value if they are well designed and enable employees to locate, share, and use knowledge more efficiently.

types of systems are used for enterprise-wide knowledge management and how do they

provide value for businesses. Enterprise-wide knowledge management systems are firmwide efforts to collect, store, distribute, and apply digital content and knowledge. Enterprise content management systems provide databases and tools for organizing and storing structured documents and tools for organizing and storing semi structured knowledge, such as e-mail or rich media. Knowledge network systems provide directories and tools for locating firm employees with special expertise who are important sources of tacit knowledge. Often these systems include group collaboration tools (including wikis and social bookmarking), portals to simplify information access, search tools, and tools for classifying information based on a taxonomy that is appropriate for the organization. Enterprise-wide knowledge management systems can provide considerable value if they are well designed and enable employees to locate, share, and use knowledge more efficiently

Knowledge work systems (KWS) support the creation of new knowledge and its integration into the organization. KWS require easy access to an external knowledge base; powerful computer hardware that can support software with intensive graphics, analysis, document management, and communications capabilities; and a user-friendly interface. Computer-aided design (CAD) systems, augmented reality applications, and virtual reality systems, which create interactive simulations that behave like the real world, require graphics and powerful modelling  capabilities. KWS for financial professionals provide access to external databases and the ability to analyse massive amounts of financial data very quickly.

Review Chapter 8: Securing Information System

Review Chapter 8: Securing Information System

Information systems vulnerable to damage, error, and abuse because Digital data are vulnerable to destruction, misuse, error, fraud, and hardware or software failures. The Internet is intended to be an open system and makes internal corporate systems more vulnerable to actions from outsiders. Hackers can unleash denial-of-service (DoS) attacks or penetrate corporate networks, causing serious system disruptions. Wi-Fi networks can easily be penetrated by intruders using sniffer programs to obtain an address to access the resources of the network. Computer viruses and worms can restrict systems and Web sites. The dispersed nature of cloud computing makes it difficult to track unauthorized activity or to apply controls from afar. Software presents problems because software bugs may be impossible to eliminate and because software vulnerabilities can be exploited by hackers and malicious software. End users often introduce errors.

Lack of sound security and control can cause firms relying on computer systems for their core business functions to lose sales and productivity. Information assets, such as confidential employee records, trade secrets, or business plans, lose much of their value if they are revealed to outsiders or if they expose the firm to legal liability. New laws, such as HIPAA, the Sarbanes-Oxley Act, and the Gramm-Leach-Bliley Act, require companies to practice stringent electronic records management and adhere to strict standards for security, privacy, and control. Legal actions requiring electronic evidence and computer forensics also require firms to pay more attention to security and electronic records management.

Firms need to establish a good set of both general and application controls for their information systems. A risk assessment evaluates information assets, identifies control points and control weaknesses, and determines the most cost-effective set of controls. Firms must also develop a coherent corporate security policy and plans for continuing business operations in the event of disaster or disruption. The security policy includes policies for acceptable use and identity management. Comprehensive and systematic MIS auditing helps organizations determine the effectiveness of security and controls for their information systems.

Firewalls prevent unauthorized users from accessing a private network when it is linked to the Internet. Intrusion detection systems monitor private networks from suspicious network traffic and attempts to access corporate systems. Passwords, tokens, smart cards, and biometric authentication are used to authenticate system users. Antivirus software checks computer systems for infections by viruses and worms and often eliminates the malicious software, while antispyware software combats intrusive and harmful spyware programs. Encryption, the coding and scrambling of messages, is a widely used technology for securing electronic transmissions over unprotected networks. Digital certificates combined with public key encryption provide further protection of electronic transactions by authenticating a user’s identity. Companies can use fault-tolerant computer systems or create high-availability computing environments to make sure that their information systems are always available. Use of software metrics and rigorous software testing help improve software quality and reliability.