...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>Journal of Software Maintenance and Evolution >ISO 31000‐based integrated risk management process assessment model for IT organizations
【24h】

ISO 31000‐based integrated risk management process assessment model for IT organizations

机译:针对IT组织的基于ISO 31000的集成风险管理流程评估模型

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Governance, Risk management, and Compliance activities are key challenges faced by organizations. Process Models and Capability Process Assessments are governance instruments that can help organization in assessing and improving their processes. Several ISO standards propose process models for Management System Standards based on ISO 9001, ISO/IEC 20000-1, and ISO/IEC 27001, and for project management with ISO 21500. The ISO 31000 standard provides guidance for Risk management with a process approach and systemic perspective. This paper presents an ISO 31000-based Integrated Risk Management Process Assessment Model (PAM) for IT organizations enabling to integrate on an easy way several ISO process-oriented standards which are often targeted by IT organizations. This PAM integrates risk management dimensions with ISO 9001, ISO 21500, ISO/IEC 20000-1, and ISO/IEC 27001. It offers a centralized and integrated risk management approach which provides the basis to improve, coordinate, and interoperate risk management activities.
机译:治理,风险管理和合规性活动是组织面临的主要挑战。流程模型和能力流程评估是治理工具,可以帮助组织评估和改进其流程。多个ISO标准提出了基于ISO 9001,ISO / IEC 20000-1和ISO / IEC 27001的管理体系标准以及用于ISO 21500的项目管理的过程模型。ISO31000标准通过过程方法和系统角度。本文为IT组织提出了一个基于ISO 31000的集成风险管理过程评估模型(PAM),该模型可以轻松地集成IT组织经常针对的几个面向ISO过程的标准。该PAM将风险管理维度与ISO 9001,ISO 21500,ISO / IEC 20000-1和ISO / IEC 27001集成在一起。它提供了集中和集成的风险管理方法,为改善,协调和互操作风险管理活动提供了基础。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号