On IT Risk Management Ontology using DEMO

Mariana Rosa; Mariana Rosa; Sérgio Guerreiro; Sérgio Guerreiro; Rúben Pereira

doi:10.5220/0010146002580266

On IT Risk Management Ontology using DEMO

Mariana Rosa, Mariana Rosa, Sérgio Guerreiro, Sérgio Guerreiro, Rúben Pereira

2020

Abstract

Nowadays, organisations use and rely on Information Technology (IT) solutions. However, despite their benefits, IT solutions induct risks. Consequently, organisations implement Risk Management (RM), more specifically Information Technology Risk Management (IT RM), in order to maximize the effectiveness of IT usage while dealing with IT risks. Nevertheless, IT RM’s implementation is not easy, since numerous standards and frameworks propose multiple RM processes to deal with IT risks. Moreover, these processes are composed of different activities causing confusion. In the end, organisations are not capable of managing risks successfully due to IT RM’s complexity. To overcome IT RM diversity, a Systematic Literature Review (SLR) was conducted. The goal is to identify which are the most essential IT RM activities. The SLR results were then integrated with ISO 31000 and PMBOK standards in the form of an ontology using Design and Engineering Methodology Ontology (DEMO). The contributions of this study are: the aggregate analysis of IT RM activities through the SLR; the identification of reasons and benefits of using DEMO; a description of an IT RM’s essential model designed as an ontology; and a critical view of the benefits of the ontological model proposed.

Download

Paper Citation

in Harvard Style

Rosa M., Guerreiro S. and Pereira R. (2020). On IT Risk Management Ontology using DEMO. In Proceedings of the 12th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management (IC3K 2020) - Volume 2: KEOD; ISBN 978-989-758-474-9, SciTePress, pages 258-266. DOI: 10.5220/0010146002580266

in Bibtex Style

@conference{keod20,
author={Mariana Rosa and Sérgio Guerreiro and Rúben Pereira},
title={On IT Risk Management Ontology using DEMO},
booktitle={Proceedings of the 12th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management (IC3K 2020) - Volume 2: KEOD},
year={2020},
pages={258-266},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010146002580266},
isbn={978-989-758-474-9},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 12th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management (IC3K 2020) - Volume 2: KEOD
TI - On IT Risk Management Ontology using DEMO
SN - 978-989-758-474-9
AU - Rosa M.
AU - Guerreiro S.
AU - Pereira R.
PY - 2020
SP - 258
EP - 266
DO - 10.5220/0010146002580266
PB - SciTePress