An Integrated Conceptual Model for Information System Security Risk Management and Enterprise Architecture Management Based on TOGAF

Abstract : Risk management is today a major steering tool for any organization wanting to deal with Information System (IS) security. However, IS Security Risk Management (ISSRM) remains difficult to establish and maintain, mainly in a context of multi-regulations with complex and inter-connected IS. We claim that a connection with Enterprise Architecture Management (EAM) contributes to deal with these issues. According to our research agenda, a first step towards a better integration of both domains is to define an EAM-ISSRM conceptual integrated model. To build such a model, we will improve the ISSRM domain model, a conceptual model depicting the domain of ISSRM, with the concepts of EAM. The contribution of this paper is focused on the improvement of the ISSRM domain model with the concepts of TOGAF, a well-known EAM standard.
Type de document :
Communication dans un congrès
Jennifer Horkoff; Manfred A. Jeusfeld; Anne Persson. 9th IFIP Working Conference on The Practice of Enterprise Modeling (PoEM), Nov 2016, Skövde, Sweden. Springer International Publishing, Lecture Notes in Business Information Processing, LNBIP-267, pp.353-361, 2016, The Practice of Enterprise Modeling 〈10.1007/978-3-319-48393-1_27〉
Liste complète des métadonnées

Littérature citée [17 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01653514
Contributeur : Hal Ifip <>
Soumis le : vendredi 1 décembre 2017 - 15:15:14
Dernière modification le : samedi 2 décembre 2017 - 01:15:19

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Nicolas Mayer, Jocelyn Aubert, Eric Grandry, Christophe Feltus. An Integrated Conceptual Model for Information System Security Risk Management and Enterprise Architecture Management Based on TOGAF. Jennifer Horkoff; Manfred A. Jeusfeld; Anne Persson. 9th IFIP Working Conference on The Practice of Enterprise Modeling (PoEM), Nov 2016, Skövde, Sweden. Springer International Publishing, Lecture Notes in Business Information Processing, LNBIP-267, pp.353-361, 2016, The Practice of Enterprise Modeling 〈10.1007/978-3-319-48393-1_27〉. 〈hal-01653514〉

Partager

Métriques

Consultations de la notice

50