Enriching Process Models for Business Process Compliance Checking in ERP Environments

@inproceedings{Schultz2013EnrichingPM,
  title={Enriching Process Models for Business Process Compliance Checking in ERP Environments},
  author={Martin Schultz},
  booktitle={DESRIST},
  year={2013}
}
  • Martin Schultz
  • Published in DESRIST 11 June 2013
  • Computer Science, Business
In enterprise resource planning (ERP) environments the audit of business process compliance is a complex task as audit relevant context information about the ERP system like application controls (ACs) need to be considered to derive comprehensive audit results. Current compliance checking approaches neglect such information as it is not readily available in process models. Even if ACs are automatically analysed with audit software, the results still need to be linked to related processes. By… 
Maintaining business process compliance despite changes: a decision support approach based on process adaptations
TLDR
Methods to automatically identify potential compliance violations in the context of changes and automatically propose process adaptions for maintaining or re-establishing compliance are presented.
Business Process Compliance Despite Change: Towards Proposals for a Business Process Adaptation
TLDR
A meta-model is developed that represents the interrelations between alternative compliance process patterns and compliance processes that satisfy the same compliance requirement and developed a method to automatically put forward proposals for a business process adaptation through the integration of alternative compliance processes to further ensure BPC.
Using Business Process Compliance Approaches for Compliance Management with Regard to Digitization: Evidence from a Systematic Literature Review
Business Process Compliance (BPC) means ensuring that business processes are in accordance with relevant compliance requirements. Thus, BPC is an essential part of both business process management
Audit-focused Mining—New Views on Integrating Process Mining and Internal Control
  • Business
  • 2014
1 ISACA JOURNAL VOLUME 3, 2014 Most approaches to process audits are antiquated and far from best utilizing the auditor’s capabilities or the potential of existing enterprise resource planning (ERP)
Model-Based Compliance in Information Systems - Foundations, Case Description and Data Set of the MobIS-Challenge for Students and Doctoral Candidates
Information systems (IS) can significantly support the organization of business processes. However, the proceeding digitalization of processes can also lead to an increasing organizational complexity
Verifying Compliance for Business Process Logs with a Hybrid Logic Model Checker
TLDR
This work presents an extended version of a Hybrid Logics model checking tool, with temporal operators, for the compliance checking of such business situations, with support for temporal operators.
An Experience Report of Improving Business Process Compliance Using Security Risk-Oriented Patterns
TLDR
This paper's experience to use the security risk-oriented patterns to improve business processes of the insurance brokerage showed the major steps to apply the regulatory standard to check compliance, as well as the major procedures needed to improve the business process compliance.
Process Mining Approach Towards Optimization of ERP Business Processes: A Case Study of Healthcare
TLDR
This paper has focused on one of the three features of process mining application i.e. discovery of process model with control flow perspective and case study of a Pakistani Enterprise has been presented to analyze the results of three applied discovery algorithms.
Design of a Subject-Oriented Reference Model for Change Management
TLDR
This paper takes up this problem with reference to Change Management and shows how it has been addressed in practice with the aid of subject-oriented Business Process Management (S-BPM) and reference modeling.
S-BPM ONE - Scientific Research
TLDR
This keynote presents four future pathways for BPM academics and professionals as the shift from business processes to customer processes considers the empowered digital native and postulates an increased focus on gaining deeper insights into the actual customer experiences along cross-organizational processes.
...
...

References

SHOWING 1-10 OF 64 REFERENCES
Business Process Compliance through Reusable Units of Compliant Processes
TLDR
An integrated approach to compliance management is presented that helps process designers to adhere to compliance requirements relevant for their processes and a framework for augmenting business processes with reusable fragments to ensure process compliance to certain requirements by design is proposed.
A static compliance-checking framework for business process models
TLDR
This paper presents a method to improve the reliability and minimize the risk of failure of business process management systems from a compliance perspective, and reduces the cost associated with inspecting business process models for compliance.
Business Process Compliance Checking: Current State and Future Challenges
TLDR
Four main aspects need to be incorporated by current compliance checking techniques: an integrated approach able to cover the full BPM life-cycle, the support for compliance checks beyond control-flow-related aspects, intuitive graphical notations for business analysts, and embedding semantic technologies during the definition, deployment and executions of compliance checks.
Context-Aware Compliance Checking
TLDR
Events modify a pre-existing context and constraints can be checked on the resulting context, and the semantic web rule language is used to formalize constraints.
Key Information Requirements for Process Audits - an Expert Perspective
TLDR
This work conducted 17 semistructured expert interviews to reconstruct key concepts of the audit domain and presents twelve relevant audit concepts and their relations in a concept map, a first step towards a domain specific modeling language.
On Enabling Data-Aware Compliance Checking of Business Process Models
TLDR
It is shown how state explosion can be avoided by conducting compliance checking for an abstract process model and abstract compliance rules and provides the basis for more efficient application of existing compliance checking algorithms.
The ERP Auditlab - A Prototypical Framework for Evaluating Enterprise Resource Planning System Assurance
  • Nick Gehrke
  • Computer Science
    2010 43rd Hawaii International Conference on System Sciences
  • 2010
TLDR
A software prototype called the ERP AuditLab for auditing so called application controls in ERP systems is presented and a case study is presented to give an impression about important application controls.
Generalizability and Applicability of Model-Based Business Process Compliance-Checking Approaches — A State-of-the-Art Analysis and Research Roadmap
TLDR
This work reflects and discusses compliance-checking approaches in order to provide an insight into their generalizability and evaluation, and proposes a roadmap for further research in model-based business process compliance checking.
Contextualisation of business processes
TLDR
This paper discusses why context matters and how context can be conceptualised, classified and integrated with existing approaches to business process modelling and proposes a framework and a meta model for classifying relevant context.
Applications of business process analytics and mining for internal control
TLDR
This article aims to introduce business process analytics and mining to the information systems (IS) audit and control community with a focus on discussing the central concepts and on providing useful cases for process Analytics and mining in the internal control setting.
...
...