Skip to main content
Conference Proceedings

Developing an integrated risk management process model for IT settings in an iso multi-standards context

Communications in Computer and Information Science (2017) 770 322-336
DOI: 10.1007/978-3-319-67383-7_24
4Citations
Citations of this article
18Readers
Mendeley users who have this article in their library.
Get full text

Abstract

With risk management as a key topic for most organizations, aligning and improving organisational and business processes is essential. Capability and Maturity Models can contribute to assess and then enable process improvement. With the need to integrate risk management in IT settings (IT department/organisation), ISO/IEC 15504-330xx process assessment approach combined with ISO 31000 for risk management can be the foundations for new process models. An integrated process-based approach with various market-demanded ISO standards (ISO 9001, ISO 21500, ISO/IEC 20000-1 and ISO/IEC 27001) is proposed in the paper; it explains how the Integrated Risk Management Process Model for IT settings in an ISO multi-standards context is developed with a Design Science research method.

Author supplied keywords

Cite

CITATION STYLE

APA

Barafort, B., Mesquida, A. L., & Mas, A. (2017). Developing an integrated risk management process model for IT settings in an iso multi-standards context. In Communications in Computer and Information Science (Vol. 770, pp. 322–336). Springer Verlag. https://doi.org/10.1007/978-3-319-67383-7_24

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free