[agents] CfP: WORKSHOP ON GOVERNANCE, RISK AND COMPLIANCE - APPLICATIONS IN INFORMATION SYSTEMS (GRCIS'11)

[Virginia Dignum - TBM]

THIRD INTERNATIONAL WORKSHOP ON GOVERNANCE, RISK AND COMPLIANCE -  APPLICATIONS IN INFORMATION SYSTEMS (GRCIS'11)

http://www.grcis.com

 

21 June, 2011

London, United Kingdom

In conjunction with CAiSE'11 (http://www.caise2011.com/)

 

***********************************

Paper Submission: February 28, 2011

***********************************

 

BACKGROUND

The importance of governance and associated issues of compliance and risk management is well recognized in enterprise systems. This importance has dramatically increased over the last few years as a result of numerous events that led to some of the largest scandals in corporate history. The governance, risk and compliance market is estimated to be worth over $32 billion. Tool support for governance, risk and compliance related initiatives is provided by over 100 software vendors, however, while the tools have on average tripled in price since 2003, they are often insufficient to meet organizational needs. At the same time, there is an increasing complexity in the facilitation of compliant business processes, which stems from an increasing number of regulations, frequent and dynamic changes, as well as shared processes and services executing in highly decentralized environments.  

 

In the age of outsourcing, dynamic business networks, and global commerce, it is inevitable that organizations will need to develop methods, tools and techniques to design, engineer, and assess processes and services that meet regulatory, standard and contractual obligations. Governance, Risk and Compliance (GRC) can be expected to play a significant part in several applications. This area is emerging as a critical and challenging area of research and innovation. It introduces, among others, the need for new or adapted modeling approaches for compliance requirements, extension of process and service modeling and execution frameworks for compliance and risk management, and detection of policy violations. In addition, it introduces questions relating specifically to the use of technology to support compliance management. For example, how auditors and regulators can put into use techniques like continuous monitoring and data analysis to assess whether an organization complies with relevant rules and regulations, or how technology can be used to support assessment of design and operational effectiveness of controls.

 

This workshop will provide, for the third year running, a forum for researchers from diverse areas and make a consolidated contribution in the form of new and extended methods that address the challenges of governance, risk and compliance in information systems. 

 

TOPICS OF INTEREST

Topics covered by the workshop will include at least the following:

 

*Policy definition and enforcement

*Smart auditing

*Compliant service and process design

*Noncompliant process identification

*ICT-enabled risk management 

*Visualization and simulation of risk in process models

*Governance processes

*Integration and effectuation of multiple regulatory standards

*Compliance, risk and tolerance metrics

*Organizational structures to support compliance

*Requirements engineering for compliant information systems

*Implementations of compliance technologies

*Separation of duties/Separation of rights

*Decision tracing

*Data provenance and lineage 

*Work tracking

*Violation detection 

*Applications of RuleML, SBVR, and other rule modeling approaches

*Technologies for compliance assurance

*Applications, case studies and use cases

 

Submitted papers will be evaluated on the basis of significance, originality, technical quality, and exposition. Papers should clearly establish the research contribution, and relation to previous research. Position and survey papers are also welcome. Authors of the best workshop paper will be invited to submit an extended version of the paper to the International Journal of Information System Modeling and Design.

 

IMPORTANT DATES

Paper Submission: February 28, 2011

Notification of acceptance: March 21, 2011

Camera ready: March 28, 2011

Workshop: June 21, 2011

 

SUBMISSION DETAILS

Papers should be submitted in PDF format and must not exceed 10 pages in length. The results described must be unpublished and must not be under review elsewhere. Submissions must conform to Springer's LNBIP formatting rules. Further authoring instructions are available at: http://www.springer.com/computer/lncs?SGWID=0-164-6-791344-0. Three to five keywords characterizing the paper should be indicated at the end of the abstract. It is expected that at least one author of each accepted paper will register for and attend the workshop. Papers should be submitted via the EasyChair submission system found at http://www.easychair.org/conferences/?conf=grcis2011. 

 

CO-CHAIRS

Dr Marta Indulska

UQ Business School

The University of Queensland

St Lucia QLD 4072

Brisbane, Australia

 

Dr Michael zur Muehlen

Howe School of Technology Management

Stevens Institute of Technology

Castle Point on Hudson

Hoboken, NJ 07030, USA

 

Dr Shazia Sadiq

School of Information Technology and Electrical Engineering

The University of Queensland

St Lucia QLD 4072

Brisbane, Australia

 

Dr Sietse Overbeek
Faculty of Technology, Policy, and Management

Delft University of Technology

Jaffalaan 5, 2628 BX Delft, 

The Netherlands

 

ASSOCIATE EDITORS

Yao-Hua Tan, Delft University of Technology

Peter Green, The University of Queensland

Virginia Dignum, Delft University of Technology

Joris Hulstijn, Delft University of Technology & Thauris B.V.

 

CONTACT

Email: grcis AT business.uq.edu.au