Risk Management Model in ITIL-Reference-Cited by-同舟云学术

Risk Management Model in ITIL

Published:2013 Issue: Volume: Page:207-214
ISSN:
Container-title:Sociotechnical Enterprise Information Systems Design and Integration
language:
Short-container-title:

Author:

Vilarinho Sarah¹,Mira da Silva Miguel²

Affiliation:

1. IST, Portugal

2. IST/INOV, Portugal

Abstract

ITIL is considered a framework of Best Practice guidance for IT Service Management, and it is widely used in the business world. In spite of this, ITIL has some gaps in Risk Management specification. This chapter approaches this problem in ITIL and compares IT risk management in ITIL to other IT Governance Frameworks. Despite ITIL stating that risk should be identified, measured, and mitigated, it is not clear on how to proceed (no concrete process is defined on how to deal with risk). To solve this, the authors propose to map the M_o_R risk management framework in ITIL, mapping every M_o_R process in ITIL, therefore adopting a strong risk management in ITIL, based on concrete guidelines, without changing the framework. In this chapter, the authors summarize the necessary guidelines and show a planning for future work.

Publisher

IGI Global

Reference12 articles.

1. Kouns, J. Minoli, & Daniel. (2010). Information technology risk management in enterprise environments. Ottawa, Canadá: Willey.

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Enabling security risk assessment and management for business process models;Journal of Information Security and Applications;2024-08

2. The Digital Operational Resilience Act for Financial Services: A Comparative Gap Analysis and Literature Review;Information Systems;2023