Towards A Model Of Maturity For Is Risk Management

Abstract

The risk management is an indispensable discipline for any organisation to acheive its objectives. As the IS (Information Systems) are key assets for organisations, managing IS risks becomes more and more important especially within a world in perpetual change. Since IS risk management creates plus value, it must follow a process of continuous improvement orchestrated by a model of maturity indicating in every time the runways of improvement. The studied literature shows the lack of a model that treat the maturity of the IS risk management and that consider all IS components. The present article has for purpose to initiate reflexion around this area and deliver a model of IS risk management maturity. First, we indicate IS definition that will fix the scope (All things concerned by IS risk management). Second, we define the IS risk management process that will fix the way (Activities used in IS risk manaegement). Third, we develop the maturity model for IS risk management. At the end, we conclude with perspectives opened to this work. [ABSTRACT FROM AUTHOR] Copyright of International Journal of Computer Science & Information Technology is the property of Academy & Industry Research Collaboration Center and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)