Affiliation:
1. University of Innsbruck, Austria
2. Università degli Studi di Milano, Italy
Abstract
Organizational risk management should not only rely on protecting data and information but also on protecting knowledge which is underdeveloped in many cases or measures are applied in an uncoordinated, dispersed way. Therefore, we propose a consistent top-down translation from the organizational risk management goals to implemented controls to overcome these shortcomings. Our approach adopted from the domain of IT security management allows to measure how well knowledge protection is actually pursued in organizations. This affects organizations' abilities to prove compliance to risk management standards, laws, guidelines, or frameworks and creates transparency throughout the whole knowledge protection processes. After introducing our integrated risk management framework, we demonstrate how the technical part of the framework can be implemented by using process mining in a case study of an Italian aerospace company.
Reference63 articles.
1. Alstete, J. (2003). Trends in Corporate Knowledge Asset Protection. Journal of Knowledge Management Practice, 4.
2. Knowledge Transfer: A Basis for Competitive Advantage in Firms
3. Azzini, A., Braghin, C., Damiani, E., & Zavatarelli, F. (2013). Using Semantic Lifting for improving Process Mining: a Data Loss Prevention System case study. Paper presented at the Third International Symposium on Data-Driven Process Discovery and Analysis, Riva del Garda, Italy.
4. Bachlechner, D., Thalmann, S., & Manhart, M. (2014). Auditing service providers: Supporting auditor’s in cross-organizational settings. Managerial Auditing Journal, 29(4).
5. Understanding the influence of organizational change strategies on information technology and knowledge management strategies
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献