Towards the ENTRI Framework: Security Risk Management enhanced by the use of Enterprise Architectures

Nicolas Mayer, Eric Grandry, Christophe Feltus, Elio Goettelman

    Résultats de recherche: Contribution dans un livre/un catalogue/un rapport/dans les actes d'une conférenceChapitre

    91 Téléchargements (Pure)

    Résumé

    Secure information systems engineering is currently a critical but complex concern. Risk management has become a standard approach to deal with the necessary trade-offs between expected security level and control cost. However, with the current interconnection between information systems combined with the in-creasing regulation and compliance requirements, it is more and more difficult to achieve real information security governance. Given that risk management is not able to deal with this complexity alone, we claim that a connection with Enterprise Architecture Management (EAM) contributes in addressing the above challenges, thereby sustaining governance and compliance in organisations. In this paper, we motivate the added value of EAM to improve security risk management and pro-pose a research agenda towards a complete framework integrating both domains
    langue originaleAnglais
    titreAdvanced Information Systems Engineering Workshops
    EditeurSpringer
    Pages459-469
    Nombre de pages12
    Les DOIs
    Etat de la publicationPublié - 8 juin 2015
    Evénement5th International Workshop on Information Systems Security Engineering, (WISSE 2015), an International Workshop of the 27th Conference on Advanced Information Systems Engineering (CAISE2015) - Stockholms, Suède
    Durée: 8 juin 201512 juin 2015

    Série de publications

    Nom Lecture Notes in Business Information Processing
    Volume215

    Comité scientifique

    Comité scientifique5th International Workshop on Information Systems Security Engineering, (WISSE 2015), an International Workshop of the 27th Conference on Advanced Information Systems Engineering (CAISE2015)
    Pays/TerritoireSuède
    La villeStockholms
    période8/06/1512/06/15

    Empreinte digitale

    Examiner les sujets de recherche de « Towards the ENTRI Framework: Security Risk Management enhanced by the use of Enterprise Architectures ». Ensemble, ils forment une empreinte digitale unique.

    Contient cette citation