A Business Viewpoint for Integrated IT Governance, Risk and Compliance
Vicente, P., & da Silva, M. M. (2011). A Business Viewpoint for Integrated IT Governance, Risk and Compliance. 2011 IEEE World Congress On, 422–428.
In this paper, they propose a business architecture that describes the integration of the main processes for IT Governance, IT Risk Management and IT Compliance (IT GRC). The paper discusses that IT requirements, standards and best practices play a crucial role in IT organizations/departments. The lack of guidance in this domain, namely scientific research, results in unaided attempts to improve efficiency and effectiveness in organizations.