• DocumentCode
    658480
  • Title

    Conceptual Integration of Enterprise Architecture Management and Security Risk Management

  • Author

    Grandry, Eric ; Feltus, Christophe ; Dubois, Eric

  • Author_Institution
    Service Sci. & Innovation, CRP Henri Tudor, Luxembourg, Luxembourg
  • fYear
    2013
  • fDate
    9-13 Sept. 2013
  • Firstpage
    114
  • Lastpage
    123
  • Abstract
    Enterprise Architecture Management (EAM) is considered to provide the mechanism for, amongst others, governing enterprise transformations required by changes in the environment. In this paper, we focus on changes that result from the analysis of information security risks and of their impacts on the services delivered by an enterprise. We present how the concepts of an information system security risks management domain can be mapped into the ArchiMate enterprise architecture modeling language. We illustrate the application of the proposed approach through the handling of a lab case.
  • Keywords
    business data processing; management information systems; risk management; security of data; simulation languages; ArchiMate enterprise architecture modeling language; EAM; enterprise architecture management; enterprise transformations; information system security; security risk management; Computer architecture; Information systems; Organizations; Risk management; Security; ArchiMate; EAM; Enterprise Model Integration; Information Security Risk Management;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Enterprise Distributed Object Computing Conference Workshops (EDOCW), 2013 17th IEEE International
  • Conference_Location
    Vancouver, BC
  • Type

    conf

  • DOI
    10.1109/EDOCW.2013.19
  • Filename
    6690541