Governance of IT is becoming more and more necessary in the current financial economic situation. This trend does not avoid the definition of corporate and IT policies. To improve that matter, the paper has for objective to propose a methodology for defining policies that are closer to the business process, and based on the strict definition of the actors' responsibility. This responsibility model is mainly defined based on the three concepts of capability, accountability and commitment. The methodology is illustrated based on a case study that highlights how it is possible to implement access control mechanism through agent-based infrastructure by extracting requirements from company practices and process formalizations.
|Title of host publication||Proceedings of the 13th IFAC Symposium on Information Control Problems in Manufacturing (INCOM 09), Volume 13 | Part 1,Moscow, Russia.|
|Editors||Bakhtadze Natalia, Dolgui Alexre|
|Place of Publication||V.A. Trapeznikov Institute of Control Sciences, Russia|
|Number of pages||6|
|Volume||13 part 1|
|Publication status||Published - 2009|
- Process Model
- ICT Governance.
- Agent Framework
- IT Policies