An ISO Compliant and Integrated Model for IT GRC (Governance, Risk Management and Compliance)

@inproceedings{Mayer2015AnIC,
  title={An ISO Compliant and Integrated Model for IT GRC (Governance, Risk Management and Compliance)},
  author={Nicolas Mayer and B{\'e}atrix Barafort and Michel Picard and St{\'e}phane Cortina},
  booktitle={EuroSPI},
  year={2015}
}
GRC (Governance, Risk and Compliance) is an umbrella acronym covering the three disciplines of governance, risk management and compliance. The main challenge behind this concept is the integration of these three areas, generally dealt with in silos. At the IT level (IT GRC), some research works have been proposed towards integration. However, the sources… CONTINUE READING