Organizational risk management should not only rely on protecting data and information but also on protecting knowledge which is underdeveloped in many cases or measures are applied in an uncoordinated, dispersed way. Therefore, we propose a consistent top-down translation from the organizational risk management goals to implemented controls to overcome these shortcomings. Our approach adopted from the domain of IT security management allows to measure how well knowledge protection is actually pursued in organizations. This affects organizations' abilities to prove compliance to risk management standards, laws, guidelines, or frameworks and creates transparency throughout the whole knowledge protection processes. After introducing our integrated risk management framework, we demonstrate how the technical part of the framework can be implemented by using process mining in a case study of an Italian aerospace company.
|Titolo:||An Integrated Risk Management Framework: Measuring the Success of Organizational Knowledge Protection|
|Parole Chiave:||Risk Management; Knowledge Protection; Process Mining|
|Settore Scientifico Disciplinare:||Settore INF/01 - Informatica|
Settore ING-IND/35 - Ingegneria Economico-Gestionale
|Data di pubblicazione:||2014|
|Digital Object Identifier (DOI):||10.4018/ijkm.2014040103|
|Appare nelle tipologie:||01 - Articolo su periodico|