Informatik
Refine
Year of publication
- 2018 (83) (remove)
Document Type
- Conference proceeding (59)
- Journal article (16)
- Book chapter (6)
- Doctoral Thesis (2)
Is part of the Bibliography
- yes (83)
Institute
- Informatik (83)
Publisher
- Springer (19)
- Hochschule Reutlingen (11)
- IEEE (11)
- RWTH Aachen (8)
- Gesellschaft für Informatik e.V (3)
- Association for Computing Machinery (2)
- Deutsche Gesellschaft für Computer- und Roboterassistierte Chirurgie e.V. (2)
- Elsevier (2)
- HTWG Konstanz (2)
- Haufe (2)
- SciTePress (2)
- ARVO (1)
- American Marketing Association (1)
- Association for Information Systems (1)
- De Gruyter (1)
- Emerald (1)
- IGI Global (1)
- Lund University (1)
- Riga Technical University Press (1)
- SPIE. The International Society for Optical Engineering (1)
- Sage Publishing (1)
- Smart Home & Living Baden-Württemberg e.V. (1)
- The Association for Computing Machinery (1)
- Universidad Carlos III de Madrid (1)
- University of Portsmouth (1)
- University of Zagreb (1)
- Universität Konstanz (1)
Enterprise Governance, Risk and Compliance (GRC) systems are key to managing risks threatening modern enterprises from many different angles. Key constituent to GRC systems is the definition of controls that are implemented on the different layers of an Enterprise Architecture (EA). As part of the compliance aspect of GRC, the effectiveness of these controls is assessed and reported to relevant management bodies within the enterprise. In this paper we present a metamodel which links controls to the affected elements of an EA and supplies a way of expressing associated assessment techniques and results. We complement the metamodel with an expository instantiation in a cockpit for control compliance applied in an international enterprise in the insurance industry.