Title | ||
---|---|---|
The Risk-Aware Enterprise Architecture: Towards a Transparent Inventory of IT Risk Management Artifacts |
Abstract | ||
---|---|---|
Abstract: A risk inventory provides an integrated view on risk management artifacts, e.g., risks, risk controls, and performance indicators. In this paper, we show how adapting the enterprise architecture management processes (EAM) may provide a foundation for an integrated IT risk inventory. Based on a design research approach, we develop a systematic approach for integrating the disciplines of risk management and enterprise architecture management. We demonstrate the utility of our approach by evaluating an identity management solution in a large bank. 1 Introduction Although risk management is commonly named as one of the top challenges in information management, risk managers and CISOs struggle with establishing and maintaining transparency over sources for risks, implemented risk controls, and their effectiveness [Pa07, SS08]. In particular, little data is available for forecasting the future impact and probability of an |
Year | Venue | Keywords |
---|---|---|
2010 | GI-Jahrestagung | risk management,enterprise architecture |
Field | DocType | Citations |
Enterprise architecture,Knowledge management,Risk analysis (engineering),IT risk,NIST Enterprise Architecture Model,Risk management,IT risk management,Enterprise architecture framework,Enterprise data management,Business,Enterprise architecture management | Conference | 0 |
PageRank | References | Authors |
0.34 | 3 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Manfred Pauli | 1 | 0 | 0.34 |
Michael Schermann | 2 | 118 | 23.92 |
Helmut Krcmar | 3 | 2464 | 373.50 |