Workshop-based Risk Assessment for the Definition of Secure Business Processes

T. Neubauer, M. Pehn:
"Workshop-based Risk Assessment for the Definition of Secure Business Processes";
Vortrag: Second International Conference on Information, Process, and Knowledge Management (eKNOW'10), St. Maarten; 10.02.2010 - 16.02.2010; in:"Proceedings of the Second International Conference on Information, Process, and Knowledge Management", IEEE Computer Society, (2010), ISBN: 9780769539560; S. 74 - 79.

[ Publication Database ]

Abstract:


Nowadays, industry and governments are faced with an
increasing number of varying threats concerning the security
of their valuable business processes. Due to the vast
damage potential, organizations are raising their security
investments, but often (i) without considering the efficiency
of the investments made, (ii) neglect to involve people in
order to raise security awareness and (iii) without giving
decision makers a feeling about the importance of the decision
problem at hand. This work provides an extension
to the established risk management solution AURUM and
extends its functionality by introducing the AURUM Workshop.
It provides a crucial extension that allows the selection
of efficient safeguards based on corporate business
processes and thereby supports decision makers (i) in refining
the basic infrastructure elements to the specific requirements
of the corporation, (ii) focusing on the most relevant
risks and (iii) in improving their awareness for the problem
at hand.