{"title":"基于最佳实践参考模型和定性数据的IT遵从性管理流程建模","authors":"R. Pereira, M. Silva","doi":"10.1109/EDOCW.2013.27","DOIUrl":null,"url":null,"abstract":"IT is becoming pervasive in all organizations as well as regulatory compliance requirements are becoming increasingly pervasive and burdensome. Several IT frameworks, which have been criticized by many researchers, exist to help organizations to mitigate IT compliance issues. However, the majority of the organizations keep being reactive when dealing with IT compliance. The goal of this paper is to analyze the main IT frameworks and literature and propose to model the IT Compliance Management process. The main contribution of this paper is the model of the IT compliance management process based in both scientific and practitioner viewpoint. We used Design Science Research as research methodology to design our proposal, we also used the concept-centric methodology to perform our literature review, and finally we evaluate our proposal with expert's interviews. We finish our paper with contributions, lessons learned and future work.","PeriodicalId":376599,"journal":{"name":"2013 17th IEEE International Enterprise Distributed Object Computing Conference Workshops","volume":"30 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-09-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"IT Compliance Management Process Modeling Based on Best Practices Reference Models and Qualitative Data\",\"authors\":\"R. Pereira, M. Silva\",\"doi\":\"10.1109/EDOCW.2013.27\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"IT is becoming pervasive in all organizations as well as regulatory compliance requirements are becoming increasingly pervasive and burdensome. Several IT frameworks, which have been criticized by many researchers, exist to help organizations to mitigate IT compliance issues. However, the majority of the organizations keep being reactive when dealing with IT compliance. The goal of this paper is to analyze the main IT frameworks and literature and propose to model the IT Compliance Management process. The main contribution of this paper is the model of the IT compliance management process based in both scientific and practitioner viewpoint. We used Design Science Research as research methodology to design our proposal, we also used the concept-centric methodology to perform our literature review, and finally we evaluate our proposal with expert's interviews. We finish our paper with contributions, lessons learned and future work.\",\"PeriodicalId\":376599,\"journal\":{\"name\":\"2013 17th IEEE International Enterprise Distributed Object Computing Conference Workshops\",\"volume\":\"30 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2013-09-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2013 17th IEEE International Enterprise Distributed Object Computing Conference Workshops\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EDOCW.2013.27\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 17th IEEE International Enterprise Distributed Object Computing Conference Workshops","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDOCW.2013.27","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
IT Compliance Management Process Modeling Based on Best Practices Reference Models and Qualitative Data
IT is becoming pervasive in all organizations as well as regulatory compliance requirements are becoming increasingly pervasive and burdensome. Several IT frameworks, which have been criticized by many researchers, exist to help organizations to mitigate IT compliance issues. However, the majority of the organizations keep being reactive when dealing with IT compliance. The goal of this paper is to analyze the main IT frameworks and literature and propose to model the IT Compliance Management process. The main contribution of this paper is the model of the IT compliance management process based in both scientific and practitioner viewpoint. We used Design Science Research as research methodology to design our proposal, we also used the concept-centric methodology to perform our literature review, and finally we evaluate our proposal with expert's interviews. We finish our paper with contributions, lessons learned and future work.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
