We found a match
Your institution may have rights to this item. Sign in to continue.
- Title
RiskM: A multi-perspective modeling method for IT risk assessment.
- Authors
Strecker, Stefan; Heise, David; Frank, Ulrich
- Abstract
Stakeholder involvement and participation are widely recognized as being key success factors for IT risk assessment. A particular challenge facing current IT risk assessment methods is to provide accessible abstractions on matters of IT risk that attend to both managerial and technical perspectives of the stakeholders involved. In this paper, we investigate whether a conceptual modeling method can address essential requirements in the IT risk assessment domain, and which structural and procedural features such a method entails. The research follows a design research process in which we describe a research artifact, and evaluate it to assess whether it meets the intended goals. In the paper, we specify requirements and assumptions underlying the method construction, discuss the structural specification of the method and its design rationale, present a prototypical application scenario, and provide an initial method evaluation. The results indicate that multi-perspective modeling methods satisfy requirements specific to the IT risk assessment domain, and that such methods, in fact, provide abstractions on matters of IT risk accessible to both a technical and a managerial audience.
- Subjects
STAKEHOLDERS; RISK assessment; INFORMATION technology; RISK; RESEARCH
- Publication
Information Systems Frontiers, 2011, Vol 13, Issue 4, p595
- ISSN
1387-3326
- Publication type
Article
- DOI
10.1007/s10796-010-9235-3