An Aspect Oriented Process Based Approach to Information Risk Management
International Journal of Engineering and Technology, Volume 5, Issue 3, pp 2262-2267
6 Pages Posted: 16 Jul 2013
Date Written: July 16, 2013
In this era of fast paced technological advancements, security issues and risks related to it have become a key concern for all organizations. Enterprise Governance, Risk management and Compliance (GRC) is the popular approach to handle enterprise risks and reduce its impact. This paper focuses on the risk management, especially the risk assessment approaches and proposes an aspect oriented approach to risk management. In this approach, the risk management processes are designed separately from the core business processes and are weaved to the flow of business process steps wherever necessary. This brings the advantage of separation of concerns of risk management from the business process. The design of business processes then need not look into the design of risk assessment related to it. This will enable handling of risk and its assessment by expert risk advisories, those who are specialized in it.
Keywords: Information Risk Management, Governance, Risk and Compliance, Security, Aspect oriented approach
Suggested Citation: Suggested Citation