%0 Conference Proceedings
%T A Frame of Reference for Research of Integrated Governance, Risk and Compliance (GRC)
%+ Institute for Software Technology and Interactive Systems
%+ Institut für Business Intelligence
%A Racz, Nicolas
%A Weippl, Edgar
%A Seufert, Andreas
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 11th IFIP TC 6/TC 11 International Conference on Communications and Multimedia Security (CMS)
%C Linz, Austria
%Y Bart Decker; Ingrid Schaumüller-Bichl
%I Springer
%3 Communications and Multimedia Security
%V LNCS-6109
%P 106-117
%8 2010-05-31
%D 2010
%R 10.1007/978-3-642-13241-4_11
%K governance
%K risk
%K compliance
%K GRC
%K integrated
%K definition
%Z Computer Science [cs]/Digital Libraries [cs.DL]Conference papers
%X Governance, Risk and Compliance (GRC) is an emerging topic in the business and information technology world. However to this day the concept behind the acronym has neither been adequately researched, nor is there a common understanding among professionals. The research at hand provides a frame of reference for research of integrated GRC that was derived from the first scientifically grounded definition of the term. By means of a literature review the authors merge observations, an analysis of existing definitions and results from prior surveys in the derivation of a single-phrase definition. The definition is evaluated and improved through a survey among GRC professionals. Finally a frame of reference for GRC research is constructed.
%G English
%2 https://inria.hal.science/hal-01056386/document
%2 https://inria.hal.science/hal-01056386/file/cms2010_submission_17.pdf
%L hal-01056386
%U https://inria.hal.science/hal-01056386
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-LNCS-6109
%~ IFIP-TC
%~ IFIP-TC11
%~ IFIP-TC6
%~ IFIP-CMS
%~ IFIP-2010