Design and natural science research on information technology
Decision Support Systems - Special issue on WITS '92
An Approach for Method Reengineering
ER '01 Proceedings of the 20th International Conference on Conceptual Modeling: Conceptual Modeling
Reusing Scenario Based Approaches in Requirement Engineering Methods: CREWS Method Base
DEXA '99 Proceedings of the 10th International Workshop on Database & Expert Systems Applications
Situational method engineering: combining assembly-based and roadmap-driven approaches
Requirements Engineering
European Journal of Information Systems - Special issue: Action in language, organisations and information systems
Operational risk analysis in business processes
BT Technology Journal
Journal of Management Information Systems
Corporate governance of IT: a framework for development
Communications of the ACM
Design Science Research Methods and Patterns: Innovating Information and Communication Technology
Design Science Research Methods and Patterns: Innovating Information and Communication Technology
Design science in information systems research
MIS Quarterly
Artifact types in information systems design science – a literature review
DESRIST'10 Proceedings of the 5th international conference on Global Perspectives on Design Science Research
The IT-CMF: a practical application of design science
DESRIST'10 Proceedings of the 5th international conference on Global Perspectives on Design Science Research
WebFDM: a situational method for the development of web applications
Journal of Web Engineering
Hi-index | 0.00 |
Against the background of the current financial crisis and an aftermath of increasing regulation, companies enhance and integrate information systems in the areas of risk management, governance and compliance. Based on experience with isolated and often immature partial solution in these fields, major challenges are the evolution of a suitable risk management solution component as well as the conceptual design of an integrated "Governance, Risk and Compliance" (GRC) approach. Another challenge is the rollout of such an integrated GRC solution. In this paper, we develop and evaluate a situational method that supports the implementation of an integrated GRC solution. The proposed situational method is comprised of 21 method fragments that support conceptual, strategic, organizational, technical, and cultural rollout aspects. Furthermore, method configurations are specified that identify only those method fragments that are relevant for certain roles, e.g. project manager or GRC expert.