{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,28]],"date-time":"2025-03-28T01:23:45Z","timestamp":1743125025840,"version":"3.40.3"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319453200"},{"type":"electronic","value":"9783319453217"}],"license":[{"start":{"date-parts":[[2016,1,1]],"date-time":"2016-01-01T00:00:00Z","timestamp":1451606400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2016]]},"DOI":"10.1007\/978-3-319-45321-7_16","type":"book-chapter","created":{"date-parts":[[2016,9,7]],"date-time":"2016-09-07T05:13:41Z","timestamp":1473225221000},"page":"220-235","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Information Security Governance: Valuation of Dependencies Between IT Solution Architectures"],"prefix":"10.1007","author":[{"given":"Oscar","family":"Gonz\u00e1lez-Rojas","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lina","family":"Ochoa-Venegas","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guillermo","family":"Molina-Le\u00f3n","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2016,9,8]]},"reference":[{"key":"16_CR1","doi-asserted-by":"publisher","first-page":"408","DOI":"10.1016\/j.cose.2006.07.005","volume":"25","author":"R Solms von","year":"2006","unstructured":"von Solms, R., von Solms, S.B.: Information security governance: a model based on the direct-control cycle. Comput. Secur. 25, 408\u2013412 (2006)","journal-title":"Comput. Secur."},{"key":"16_CR2","doi-asserted-by":"crossref","unstructured":"Ohki, E., Harada, Y., Kawaguchi, S., Shiozaki, T., Kagaya, T.: Information security governance framework. In: First ACM Workshop on Information Security Governance, pp. 1\u20136. ACM, New York (2009)","DOI":"10.1145\/1655168.1655170"},{"key":"16_CR3","doi-asserted-by":"crossref","unstructured":"Kusumah, P., Sutikno, S., Rosmansyah, Y.: Model design of information security governance assessment with collaborative integration of COBIT 5 and ITIL (casestudy: INTRAC). In: 2nd International Conference on ICT for Smart Society, pp. 1\u20136. IEEE, Danvers (2014)","DOI":"10.1109\/ICTSS.2014.7013193"},{"key":"16_CR4","doi-asserted-by":"publisher","first-page":"75","DOI":"10.1145\/1039539.1039542","volume":"48","author":"J Tillquist","year":"2005","unstructured":"Tillquist, J., Rodgers, W.: Using asset specificity and asset scope to measure the value of IT. Commun. ACM 48, 75\u201380 (2005)","journal-title":"Commun. ACM"},{"key":"16_CR5","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"97","DOI":"10.1007\/978-3-319-21915-8_7","volume-title":"Perspectives in Business Informatics Research","author":"O Gonz\u00e1lez Rojas","year":"2015","unstructured":"Gonz\u00e1lez Rojas, O.: Governing IT services for quantifying business impact. In: Matulevi\u010dius, R., Dumas, M. (eds.) BIR 2015. LNBIP, vol. 229, pp. 97\u2013112. Springer, Heidelberg (2015)"},{"key":"16_CR6","unstructured":"IEEE Architecture Working Group: Std 1471\u20132000. Recommended Practice for Architectural Description of Software-intensive Systems. Technical report, IEEE (2000)"},{"key":"16_CR7","unstructured":"The Open Group: TOGAF Version 9.1 - Enterprise Edition. Van Haren Publishing (2011)"},{"key":"16_CR8","doi-asserted-by":"crossref","unstructured":"Euting, T., Weimert, B.: Information security. In: Bullinger, H.-J. (ed.) Technology Guide: Principles - Applications - Trends, pp. 498\u2013503. Springer, Heidelberg (2009)","DOI":"10.1007\/978-3-540-88546-7_94"},{"key":"16_CR9","volume-title":"IT Governance: How Top Performers Manage IT Decision Rights for Superior Results","author":"P Weill","year":"2004","unstructured":"Weill, P., Ross, J.: IT Governance: How Top Performers Manage IT Decision Rights for Superior Results. Harvard Business School Press, Boston (2004)"},{"key":"16_CR10","unstructured":"IEEE Computer Society: IEEE Standard Computer Dictionary: A Compilation of IEEE Standard Computer Glossaries. IEEE Press, Piscataway (1991)"},{"issue":"1","key":"16_CR11","doi-asserted-by":"crossref","first-page":"75","DOI":"10.2307\/25148625","volume":"28","author":"AR Hevner","year":"2004","unstructured":"Hevner, A.R., March, S.T., Park, J., Ram, S.: Design science in information systems research. MIS Quart. 28(1), 75\u2013106 (2004)","journal-title":"MIS Quart."},{"key":"16_CR12","doi-asserted-by":"crossref","unstructured":"Coetzee, M.: Towards a holistic information security governance framework for SOA. In: 7th International Conference on Availability, Reliability and Security, pp. 155\u2013160. IEEE Computer Society (2012)","DOI":"10.1109\/ARES.2012.62"},{"key":"16_CR13","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1080\/19393555.2011.629341","volume":"21","author":"JS Burkett","year":"2012","unstructured":"Burkett, J.S.: Business security architecture: weaving information security into your organization\u2019s enterprise architecture through SABSA. Inf. Secur. J. Glob. Perspect. 21, 47\u201354 (2012)","journal-title":"Inf. Secur. J. Glob. Perspect."},{"issue":"4","key":"16_CR14","doi-asserted-by":"publisher","first-page":"121","DOI":"10.1080\/07421222.2000.11518268","volume":"16","author":"MJ Davern","year":"2000","unstructured":"Davern, M.J., Kauffman, R.J.: Discovering potential and realizing value from information technology investments. J. Manage. Inf. Syst. 16(4), 121\u2013143 (2000)","journal-title":"J. Manage. Inf. Syst."},{"key":"16_CR15","unstructured":"International Organization for Standardization: ISO\/IEC 27000:2016: Information technology - Security techniques - Information security management systems - Overview and vocabulary. Technical report, ISO (2016)"},{"key":"16_CR16","doi-asserted-by":"crossref","unstructured":"Bowen, P., Hash, J., Wilson, M.: Information Security Handbook: A Guide for Managers. Technical report, National Institute of Standards & Technology (2006)","DOI":"10.6028\/NIST.SP.800-100"},{"key":"16_CR17","unstructured":"ISACA: COBIT 5 for Information Security. Technical report, Information Systems Audit and Control Association (2013)"},{"key":"16_CR18","unstructured":"ISACA: COBIT 5 for Risk. Technical report, Information Systems Audit and Control Association (2013)"},{"issue":"3","key":"16_CR19","doi-asserted-by":"publisher","first-page":"134","DOI":"10.2307\/41166497","volume":"51","author":"M Parent","year":"2009","unstructured":"Parent, M., Reich, B.H.: Governing information technology risk. Calif. Manage. Rev. 51(3), 134\u2013152 (2009)","journal-title":"Calif. Manage. Rev."},{"key":"16_CR20","doi-asserted-by":"crossref","unstructured":"Gonz\u00e1lez-Rojas, O., Lesmes, S.: Value at risk within business processes: an automated IT risk governance approach. In: Rosa, M.L., Loos, P., Pastor, O. (eds.) BPM 2016. LNCS, vol. 9850. Springer, Heidelberg (2016, in press)","DOI":"10.1007\/978-3-319-45348-4_21"},{"key":"16_CR21","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"64","DOI":"10.1007\/978-3-642-29231-6_6","volume-title":"Workshops on Business Informatics Research","author":"A Herrmann","year":"2012","unstructured":"Herrmann, A., Morali, A., Etalle, S., Wieringa, R.: Risk and business goal based security requirement and countermeasure prioritization. In: Niedrite, L., Strazdina, R., Wangler, B. (eds.) BIR Workshops 2011. LNBIP, vol. 106, pp. 64\u201376. Springer, Heidelberg (2012)"}],"container-title":["Lecture Notes in Business Information Processing","Perspectives in Business Informatics Research"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-45321-7_16","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,20]],"date-time":"2019-05-20T19:54:31Z","timestamp":1558382071000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-45321-7_16"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016]]},"ISBN":["9783319453200","9783319453217"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-45321-7_16","relation":{},"ISSN":["1865-1348","1865-1356"],"issn-type":[{"type":"print","value":"1865-1348"},{"type":"electronic","value":"1865-1356"}],"subject":[],"published":{"date-parts":[[2016]]},"assertion":[{"value":"8 September 2016","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"BIR","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Business Informatics Research","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Prague","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Czech Republic","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2016","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 September 2016","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16 September 2016","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"bir2016","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}