A Model of Maturity for IS Risk Management Case Study

Mina Elmaallam, Abdelaziz Kriouile


This paper is a continuation of our first paper dedicated to the presentation of the maturity model for information system (IS) risk management (RM). Its objective is to place the model proposed in the first paper on a case study by the assessment of the maturity of risk management for an IS-CRM (IS dedicated to customer relationship management (CRM)). The sequence of the model requires prior definition of an evaluation system incorporating the setting, the measurement and consolidation methods. In our case study we have gone through four steps: definition of studied components, evaluation of control objectives, calculate the maturity levels for each activity of the RM process and calculate the RM process maturity.

Full Text:


DOI: http://dx.doi.org/10.5539/cis.v5n3p97

Computer and Information Science   ISSN 1913-8989 (Print)   ISSN 1913-8997 (Online)
Copyright © Canadian Center of Science and Education

To make sure that you can receive messages from us, please add the 'ccsenet.org' domain to your e-mail 'safe list'. If you do not receive e-mail in your 'inbox', check your 'bulk mail' or 'junk mail' folders.