Integration of IT Governance and Security Risk Management: a Systematic Literature Review

被引：0

作者：

De Smet, Dieter ^{[1
]}

Mayer, Nicolas ^{[1
]}

机构：

[1] Luxembourg Inst Sci & Technol, 5,Ave Hauts Fourneaux, L-4362 Esch Sur Alzette, Luxembourg

来源：

INTERNATIONAL CONFERENCE ON INFORMATION SOCIETY (I-SOCIETY 2016) | 2016年

关键词：

IT governance; risk management; information security; systematic literature review; GRC; INFORMATION; ARCHITECTURE; SECTOR;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

GRC is an umbrella acronym covering the three disciplines of governance, risk management and compliance. In this context, IT GRC is the subset of GRC dealing with IT aspects of GRC. The main challenge of GRC is to have an approach as integrated as possible of the three domains. The objective of our paper is to study one facet of IT GRC: the links and integration between IT governance and risk management that we consider today as the least integrated. To do so, the method followed in this paper is a systematic literature review, in order to identify the existing research works in this field. The resulting contribution of the paper is a set of recommendations established for practitioners and for researchers on how better deal with the integration between IT governance and risk management.

引用

页码：143 / 148

页数：6

共 50 条

[1] Food security governance: a systematic literature review
Candel, Jeroen J. L.
[J]. FOOD SECURITY, 2014, 6 (04) : 585 - 601
[2] Food security governance: a systematic literature review
Jeroen J. L. Candel
[J]. Food Security, 2014, 6 : 585 - 601
[3] Cyber Security Risk Management for Ports - A Systematic Literature Review
Drummond, Barbara M.
Machado, Raphael C. S.
[J]. 2021 IEEE INTERNATIONAL WORKSHOP ON METROLOGY FOR THE SEA (METROSEA 2021), 2021, : 406 - 411
[4] Corporate governance integration with sustainability: a systematic literature review
E-Vahdati, Sahar
Zulkifli, Norhayah
Zakaria, Zarina
[J]. CORPORATE GOVERNANCE-THE INTERNATIONAL JOURNAL OF BUSINESS IN SOCIETY, 2019, 19 (02): : 255 - 269
[5] Towards an Integration of Information Security Management, Risk Management and Enterprise Architecture Management - a Literature Review
Diefenbach, Thomas
Lucke, Carsten
Lechner, Ulrike
[J]. 11TH IEEE INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGY AND SCIENCE (CLOUDCOM 2019), 2019, : 326 - 333
[6] Internet governance and cyber-security: a systematic literature review
Yusif, Salifu
Hafeez-Baig, Abdul
Anachanser, Charles
[J]. INFORMATION SECURITY JOURNAL, 2024, 33 (02): : 158 - 171
[7] Security Risk Management in Cooperative Intelligent Transportation Systems: A Systematic Literature Review
Affia, Abasi-Amefon O.
Matulevicius, Raimundas
Nolte, Alexander
[J]. ON THE MOVE TO MEANINGFUL INTERNET SYSTEMS: OTM 2019 CONFERENCES, 2019, 11877 : 282 - 300
[8] Governance and Insolvency Risk in Banking: A Systematic Literature Review
Idan, Raya
Amin, Syajarul Imna Mohd
Abdul-Rahman, Aisyah
Ghazali, Mohd Fahmi
[J]. ASIAN JOURNAL OF ACCOUNTING AND GOVERNANCE, 2024, 21 : 1 - 22
[9] A review of the flood risk management governance and resilience literature
Morrison, A.
Westbrook, C. J.
Noble, B. F.
[J]. JOURNAL OF FLOOD RISK MANAGEMENT, 2018, 11 (03): : 291 - 304
[10] Information Security Risk Management in IT Outsourcing - A Quarter-century Systematic Literature Review
Bhatti, Baber Majid
Mubarak, Sameera
Nagalingam, Sev
[J]. JOURNAL OF GLOBAL INFORMATION TECHNOLOGY MANAGEMENT, 2021, 24 (04) : 259 - 298

← 1 2 3 4 5 →