Governance, Risk and Compliance: A Strategic Alignment Perspective Applied to Two Case Studies - ICT Critical Infrastructures and Society
Conference Papers Year : 2012

Governance, Risk and Compliance: A Strategic Alignment Perspective Applied to Two Case Studies

Abstract

Governance, Risk and Compliance (GRC) has become critical for organizations and so is the need to support this by ICT. This paper positions GRC into an integrated strategic perspective, providing guidelines to assess maturity and defining paths for achieving strategic alignment. The approach is applied to two case studies, clarifying the organizations’ GRC maturity “as is” and “to be”. These cases were studied in the utilities and financial sectors, both show that organizations can have similar GRC maturity levels but follow quite different paths to achieve alignment with regard to GRC. While the Dutch utility company stuck to a path where the organizational strategy with respect to GRC was taken as a starting point, the financial institution followed a path in which the IT solution strategy was leading. In interpreting this result, it appears that the existing IT assets are strongly impacting the selection of the alignment path. More case studies are advocated to further validate the approach and contribute to optimize the strategic and integrated perspective on GRC.
Fichier principal
Vignette du fichier
978-3-642-33332-3_19_Chapter.pdf (343.95 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01525120 , version 1 (19-05-2017)

Licence

Identifiers

Cite

Abbas Shahim, Ronald Batenburg, Geert Vermunt. Governance, Risk and Compliance: A Strategic Alignment Perspective Applied to Two Case Studies. 10th International Conference on Human Choice and Computers (HCC), Sep 2012, Amsterdam, Netherlands. pp.202-212, ⟨10.1007/978-3-642-33332-3_19⟩. ⟨hal-01525120⟩
75 View
691 Download

Altmetric

Share

More