Skip to Main content Skip to Navigation
Conference papers

An Experience Report of Improving Business Process Compliance Using Security Risk-Oriented Patterns

Abstract : Nowadays enterprises are searching the efficient compliance management method. Being compliant could potentially help capturing the most important information, using practice and existing process solutions; thus reducing the management effort and cost. When it comes to the security compliance management, it means treating and reducing the security risks to the acceptable level and employing the validated and cost effective security countermeasures. However, the typical question that small and medium enterprises face, is on how to achieve the security compliance in the efficient way. In this paper we report on our experience to use the security risk-oriented patterns to improve business processes of the insurance brokerage. The analysed case showed the major steps to apply the regulatory standard to check compliance, as well as the major procedures needed to improve the business process compliance. The lessons learnt highlight some method guidelines toward compliance management and suggest needed improvement directions for the application of the security risk-oriented patterns.
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, January 20, 2017 - 3:07:11 PM
Last modification on : Saturday, January 21, 2017 - 1:04:33 AM
Long-term archiving on: : Friday, April 21, 2017 - 3:18:11 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Mari-Liis Alaküla, Raimundas Matulevičius. An Experience Report of Improving Business Process Compliance Using Security Risk-Oriented Patterns. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. pp.271-285, ⟨10.1007/978-3-319-25897-3_18⟩. ⟨hal-01442257⟩



Record views


Files downloads