Integration of IT Governance and Security Risk Management: a Systematic Literature Review

被引:0
|
作者
De Smet, Dieter [1 ]
Mayer, Nicolas [1 ]
机构
[1] Luxembourg Inst Sci & Technol, 5,Ave Hauts Fourneaux, L-4362 Esch Sur Alzette, Luxembourg
来源
INTERNATIONAL CONFERENCE ON INFORMATION SOCIETY (I-SOCIETY 2016) | 2016年
关键词
IT governance; risk management; information security; systematic literature review; GRC; INFORMATION; ARCHITECTURE; SECTOR;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
GRC is an umbrella acronym covering the three disciplines of governance, risk management and compliance. In this context, IT GRC is the subset of GRC dealing with IT aspects of GRC. The main challenge of GRC is to have an approach as integrated as possible of the three domains. The objective of our paper is to study one facet of IT GRC: the links and integration between IT governance and risk management that we consider today as the least integrated. To do so, the method followed in this paper is a systematic literature review, in order to identify the existing research works in this field. The resulting contribution of the paper is a set of recommendations established for practitioners and for researchers on how better deal with the integration between IT governance and risk management.
引用
收藏
页码:143 / 148
页数:6
相关论文
共 50 条
  • [21] Systematic literature review of the risk management process literature for the public sector
    Salgado, Eduardo Gomes
    dos Anjos, Fábio Henrique
    da Silva, Vinicius Nogueira
    de Souza, Maik
    Sant’Ana, Tomás Dias
    de Souza Bermejo, Paulo Henrique
    Mendonça, Lucas Cezar
    Pinheiro, Iara Ferreira
    [J]. Advances in Intelligent Systems and Computing, 2019, 797 : 865 - 882
  • [22] Systematic Literature Review of the Risk Management Process Literature for the Public Sector
    Salgado, Eduardo Gomes
    dos Anjos, Fabio Henrique
    da Silva, Vinicius Nogueira
    de Souza, Maik
    Sant'Ana, Tomas Dias
    de Souza Bermejo, Paulo Henrique
    Mendonca, Lucas Cezar
    Pinheiro, Iara Ferreira
    [J]. THIRD INTERNATIONAL CONGRESS ON INFORMATION AND COMMUNICATION TECHNOLOGY, 2019, 797 : 865 - 882
  • [23] Commoning the governance: a review of literature and the integration of power
    Stefan Partelow
    Aisa O. Manlosa
    [J]. Sustainability Science, 2023, 18 : 265 - 283
  • [24] Commoning the governance: a review of literature and the integration of power
    Partelow, Stefan
    Manlosa, Aisa O.
    [J]. SUSTAINABILITY SCIENCE, 2023, 18 (01) : 265 - 283
  • [25] Security and risk management in outdoor sports - an exploratory systematic review
    Mata, Carlos
    Carvalhinho, Luis
    [J]. SPORT TK-REVISTA EUROAMERICANA DE CIENCIAS DEL DEPORTE, 2020, 9 (01): : 59 - 63
  • [26] Trust management in the internet of vehicles: a systematic literature review of blockchain integration
    Abbasi, Shirin
    Khaledian, Navid
    Rahmani, Amir Masoud
    [J]. INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2024, 23 (04) : 3065 - 3088
  • [27] HEALTH LEAN MANAGEMENT AND CLINICAL RISK MANAGEMENT: A SYSTEMATIC LITERATURE REVIEW
    Crema, Maria
    Verbano, Chiara
    [J]. CONFRONTING CONTEMPORARY BUSINESS CHALLENGES THROUGH MANAGEMENT INNOVATION, 2013, : 659 - 673
  • [28] Corporate governance and risk management: a systematic review and synthesis for future research
    Kalia, Ankita
    Gill, Suveera
    [J]. JOURNAL OF ADVANCES IN MANAGEMENT RESEARCH, 2023, 20 (03) : 409 - 461
  • [29] The integration of quality management in higher education institutions: a systematic literature review
    Manatos, Maria J.
    Sarrico, Claudia S.
    Rosa, Maria J.
    [J]. TOTAL QUALITY MANAGEMENT & BUSINESS EXCELLENCE, 2017, 28 (1-2) : 159 - 175
  • [30] Boundary objects, knowledge integration, and innovation management: A systematic review of the literature
    Caccamo, Marta
    Pittino, Daniel
    Tell, Fredrik
    [J]. TECHNOVATION, 2023, 122
12345