TY  - CHAP
U1  - Konferenzveröffentlichung
A1  - Deistler, Nico
A1  - Rentrop, Christopher
T1  - An IT-GRC approach in SME
T2  - 15th IADIS International Conferenence Information Systems, 12-14 March 2022, virtual
N2  - The digital transformation of business processes and the integration of IT systems leads to opportunities and risks for small and medium-sized enterprises (SMEs). Risks that can result in a lack of IT compliance. The purpose of this research-in-progress paper is to present the current state of a IT-Governance-Risk-Compliance (IT-GRC) research-project. First, the results of an already conducted literature research will be discussed, combined with qualitative interviews (expert survey) of persons close to IT compliance. In the context of this paper, a first design approach will be developed by selecting relevant existing frameworks and standards and the identification of SME-specific conditions. The first design is intended to contribute a further artefact conception of tailoring approaches and standards and the creation of a guidance.
KW  - IT-GRC
KW  - IT-Compliance
KW  - SME
KW  - DSR
Y1  - 2022
SN  - 978-989-8704-37-5
SB  - 978-989-8704-37-5
SP  - 233
EP  - 237
PB  - IADIS Press
ER  -