An Aspect Oriented Process Based Approach To Information Risk Management
نویسندگان
چکیده
-In this era of fast paced technological advancements, security issues and risks related to it have become a key concern for all organizations. Enterprise Governance, Risk management and Compliance (GRC) is the popular approach to handle enterprise risks and reduce its impact. This paper focuses on the risk management, especially the risk assessment approaches and proposes an aspect oriented approach to risk management. In this approach, the risk management processes are designed separately from the core business processes and are weaved to the flow of business process steps wherever necessary. This brings the advantage of separation of concerns of risk management from the business process. The design of business processes then need not look into the design of risk assessment related to it. This will enable handling of risk and its assessment by expert risk advisories, those who are specialized in it.
منابع مشابه
Providing an Enterprise Architecture Framework Model for Laboratory Information Management Systems by Service Oriented Approach
Background and Aim: Laboratories are one of the most important scientific and research centers. Laboratory information management systems provide a platform for recording the information and collaborating between researchers. The main purpose of this study was suggesting an organizational architecture model of laboratory information management systems. Materials and Methods: This study was a ...
متن کاملRisk management in medical product development process using traditional FMEA and fuzzy linguistic approach: a case study
Medical product development (MPD) process is highly multidisciplinary in nature, which increases the complexity and the associated risks. Managing the risks during MPD process is very crucial. The objective of this research is to explore risks during MPD in a dental product manufacturing company and propose a model for risk mitigation during MPD process to minimize failure events. A case study ...
متن کاملA New Extended Analytical Hierarchy Process Technique with Incomplete Interval-valued Information for Risk Assessment in IT Outsourcing
Information technology (IT) outsourcing has been recognized as a new methodology in many organizations. Yet making an appropriate decision with regard to selection and use of these methodologies may impose uncertainties and risks. Estimating the occurrence probability of risks and their impacts organizations goals may reduce their threats. In this study, an extended analytical hierarchical proc...
متن کاملFoundations of Aspect Oriented Business Process Management
Reducing complexity in Information Systems is a main concern in both research and industry. One strategy for reducing complexity is separation of concerns. This strategy advocates separating various concerns, like security and privacy, from the main concern. It results in less complex, easily maintainable, and more reusable Information Systems. Separation of concerns is addressed through the As...
متن کاملAspect Oriented UML to ECORE Model Transformation
With the emerging concept of model transformation, information can be extracted from one or more source models to produce the target models. The conversion of these models can be done automatically with specific transformation languages. This conversion requires mapping between both models with the help of dynamic hash tables. Hash tables store reference links between the elements of the source...
متن کامل