A Frame of Reference for Research of Integrated Governance, Risk and Compliance (GRC)

Abstract : Governance, Risk and Compliance (GRC) is an emerging topic in the business and information technology world. However to this day the concept behind the acronym has neither been adequately researched, nor is there a common understanding among professionals. The research at hand provides a frame of reference for research of integrated GRC that was derived from the first scientifically grounded definition of the term. By means of a literature review the authors merge observations, an analysis of existing definitions and results from prior surveys in the derivation of a single-phrase definition. The definition is evaluated and improved through a survey among GRC professionals. Finally a frame of reference for GRC research is constructed.
Document type :
Conference papers
Complete list of metadatas

Cited literature [20 references]  Display  Hide  Download

https://hal.inria.fr/hal-01056386
Contributor : Hal Ifip <>
Submitted on : Monday, August 18, 2014 - 5:59:41 PM
Last modification on : Friday, August 11, 2017 - 3:29:40 PM
Long-term archiving on : Thursday, November 27, 2014 - 5:33:26 AM

File

cms2010_submission_17.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Nicolas Racz, Edgar Weippl, Andreas Seufert. A Frame of Reference for Research of Integrated Governance, Risk and Compliance (GRC). 11th IFIP TC 6/TC 11 International Conference on Communications and Multimedia Security (CMS), May 2010, Linz, Austria. pp.106-117, ⟨10.1007/978-3-642-13241-4_11⟩. ⟨hal-01056386⟩

Share

Metrics

Record views

440

Files downloads

3250