Skip to Main content Skip to Navigation
Conference papers

An Experience Report of Improving Business Process Compliance Using Security Risk-Oriented Patterns

Abstract : Nowadays enterprises are searching the efficient compliance management method. Being compliant could potentially help capturing the most important information, using practice and existing process solutions; thus reducing the management effort and cost. When it comes to the security compliance management, it means treating and reducing the security risks to the acceptable level and employing the validated and cost effective security countermeasures. However, the typical question that small and medium enterprises face, is on how to achieve the security compliance in the efficient way. In this paper we report on our experience to use the security risk-oriented patterns to improve business processes of the insurance brokerage. The analysed case showed the major steps to apply the regulatory standard to check compliance, as well as the major procedures needed to improve the business process compliance. The lessons learnt highlight some method guidelines toward compliance management and suggest needed improvement directions for the application of the security risk-oriented patterns.
Complete list of metadata

https://hal.inria.fr/hal-01442257
Contributor : Hal Ifip <>
Submitted on : Friday, January 20, 2017 - 3:07:11 PM
Last modification on : Saturday, January 21, 2017 - 1:04:33 AM
Long-term archiving on: : Friday, April 21, 2017 - 3:18:11 PM

File

978-3-319-25897-3_18_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Mari-Liis Alaküla, Raimundas Matulevičius. An Experience Report of Improving Business Process Compliance Using Security Risk-Oriented Patterns. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. pp.271-285, ⟨10.1007/978-3-319-25897-3_18⟩. ⟨hal-01442257⟩

Share

Metrics

Record views

133

Files downloads

318