Integrated management of risk information

Detalhes bibliográficos
Autor(a) principal: Barateiro, J.
Data de Publicação: 2011
Outros Autores: Borbinha, J. L.
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://repositorio.lnec.pt:8080/jspui/handle/123456789/1002546
Resumo: Today's competitive environment requires effective risk management activities to create prevention and control mechanisms to address the risks attached to specific activities and valuable assets. One of the main challenges in this area is concerned with the analysis and modeling of risks, which increases with the fact that current efforts tend to operate in silos with narrowly focused, functionally driven, and disjointed activities. This leads to a fragmented view of risks, where each activity uses its own language, customs and metrics. The lack of interconnection and holistic view of risks limits an organization-wide perception of risks, where interdependent risks are not anticipated, controlled or managed. In order to address the Risk Management interoperability and standardization issues, this paper proposes an alignment between Risk Management, Governance and Enterprise Architecture activities, providing a systematic support to map and trace identified risks to enterprise artifacts modeled within the Enterprise Architecture, supporting the overall strategy and governance of any organization. We propose an architecture where risks are defined through a XML-based domain specific language, and integrated with a Metadata Registry to handle risk concerns in the overall organization environment.
id RCAP_622f79f841a908c6ff39ffe06e2e90a7
oai_identifier_str oai:localhost:123456789/1002546
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Integrated management of risk informationRisk managementIt governanceEnterprise architectureMetadata registryToday's competitive environment requires effective risk management activities to create prevention and control mechanisms to address the risks attached to specific activities and valuable assets. One of the main challenges in this area is concerned with the analysis and modeling of risks, which increases with the fact that current efforts tend to operate in silos with narrowly focused, functionally driven, and disjointed activities. This leads to a fragmented view of risks, where each activity uses its own language, customs and metrics. The lack of interconnection and holistic view of risks limits an organization-wide perception of risks, where interdependent risks are not anticipated, controlled or managed. In order to address the Risk Management interoperability and standardization issues, this paper proposes an alignment between Risk Management, Governance and Enterprise Architecture activities, providing a systematic support to map and trace identified risks to enterprise artifacts modeled within the Enterprise Architecture, supporting the overall strategy and governance of any organization. We propose an architecture where risks are defined through a XML-based domain specific language, and integrated with a Metadata Registry to handle risk concerns in the overall organization environment.2011-10-03T13:51:06Z2014-10-09T13:34:47Z2016-06-01T10:59:06Z2011-09-01T00:00:00Z2011-09conference objectinfo:eu-repo/semantics/publishedVersionapplication/pdfhttp://repositorio.lnec.pt:8080/jspui/handle/123456789/1002546eng978-83-60810-22-4Barateiro, J.Borbinha, J. L.info:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-09-28T03:01:17Zoai:localhost:123456789/1002546Portal AgregadorONGhttps://www.rcaap.pt/oai/openairemluisa.alvim@gmail.comopendoar:71602024-09-28T03:01:17Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Integrated management of risk information
title Integrated management of risk information
spellingShingle Integrated management of risk information
Barateiro, J.
Risk management
It governance
Enterprise architecture
Metadata registry
title_short Integrated management of risk information
title_full Integrated management of risk information
title_fullStr Integrated management of risk information
title_full_unstemmed Integrated management of risk information
title_sort Integrated management of risk information
author Barateiro, J.
author_facet Barateiro, J.
Borbinha, J. L.
author_role author
author2 Borbinha, J. L.
author2_role author
dc.contributor.author.fl_str_mv Barateiro, J.
Borbinha, J. L.
dc.subject.por.fl_str_mv Risk management
It governance
Enterprise architecture
Metadata registry
topic Risk management
It governance
Enterprise architecture
Metadata registry
description Today's competitive environment requires effective risk management activities to create prevention and control mechanisms to address the risks attached to specific activities and valuable assets. One of the main challenges in this area is concerned with the analysis and modeling of risks, which increases with the fact that current efforts tend to operate in silos with narrowly focused, functionally driven, and disjointed activities. This leads to a fragmented view of risks, where each activity uses its own language, customs and metrics. The lack of interconnection and holistic view of risks limits an organization-wide perception of risks, where interdependent risks are not anticipated, controlled or managed. In order to address the Risk Management interoperability and standardization issues, this paper proposes an alignment between Risk Management, Governance and Enterprise Architecture activities, providing a systematic support to map and trace identified risks to enterprise artifacts modeled within the Enterprise Architecture, supporting the overall strategy and governance of any organization. We propose an architecture where risks are defined through a XML-based domain specific language, and integrated with a Metadata Registry to handle risk concerns in the overall organization environment.
publishDate 2011
dc.date.none.fl_str_mv 2011-10-03T13:51:06Z
2011-09-01T00:00:00Z
2011-09
2014-10-09T13:34:47Z
2016-06-01T10:59:06Z
dc.type.driver.fl_str_mv conference object
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://repositorio.lnec.pt:8080/jspui/handle/123456789/1002546
url http://repositorio.lnec.pt:8080/jspui/handle/123456789/1002546
dc.language.iso.fl_str_mv eng
language eng
dc.relation.none.fl_str_mv 978-83-60810-22-4
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv mluisa.alvim@gmail.com
_version_ 1817548518636650496