[AISWorld] Deadline Extended: CfP GRCIS'12 Workshop on Governance Risk and Compliance in IS @CAiSE2012

Wed Feb 29 04:22:14 EST 2012

4th INTERNATIONAL WORKSHOP ON GOVERNANCE, RISK AND COMPLIANCE -  APPLICATIONS IN INFORMATION SYSTEMS (GRCIS'12)
http://www.grcis.com

26 June, 2012
Gdansk, Poland
In conjunction with CAiSE'12 (http://www.caise2012.univ.gda.pl/)

***********************************
DEADLINE EXTENDED: MARCH 4, 2012 (firm)
***********************************

BACKGROUND
The importance of governance and associated issues of compliance and risk management is well recognized in enterprise systems. This importance has dramatically increased over the last few years as a result of numerous events that led to some of the largest scandals in corporate history. The governance, risk and compliance market is estimated to be worth over $32 billion. Tool support for governance, risk and compliance related initiatives is provided by over 100 software vendors, however, while the tools have on average tripled in price since 2003, they are often insufficient to meet organizational needs. At the same time, there is an increasing complexity in the facilitation of compliant business processes, which stems from an increasing number of regulations, frequent and dynamic changes, as well as shared processes and services executing in highly decentralized environments. 

In the age of outsourcing, dynamic business networks, and global commerce, it is inevitable that organizations will need to develop methods, tools and techniques to design, engineer, and assess processes and services that meet regulatory, standard and contractual obligations. Governance, Risk and Compliance (GRC) can be expected to play a significant part in several applications. This area is emerging as a critical and challenging area of research and innovation. It introduces, among others, the need for new or adapted modeling approaches for compliance requirements, extension of process and service modeling and execution frameworks for compliance and risk management, and detection of policy violations. In addition, it introduces questions relating specifically to the use of technology to support compliance management. For example, how auditors and regulators can put into use techniques like continuous monitoring and data analysis to assess whether an organization complies with relevant rules and regulations, or how technology can be used to support assessment of design and operational effectiveness of controls.

This workshop will provide, for the fourth year running, a forum for researchers from diverse areas and make a consolidated contribution in the form of new and extended methods that address the challenges of governance, risk and compliance in information systems. Industry papers are also encouraged at this workshop. 

TOPICS OF INTEREST
Topics covered by the workshop will include at least the following:

*Policy definition and enforcement
*Smart auditing
*Compliant service and process design
*Noncompliant process identification
*ICT-enabled risk management 
*Visualization and simulation of risk in process models
*Governance processes
*Integration and effectuation of multiple regulatory standards
*Compliance, risk and tolerance metrics
*Organizational structures to support compliance
*Requirements engineering for compliant information systems
*Implementations of compliance technologies
*Separation of duties/Separation of rights
*Decision tracing
*Data provenance and lineage 
*Work tracking
*Violation detection 
*Applications of RuleML, SBVR, and other rule modeling approaches
*Technologies for compliance assurance
*Applications, case studies and use cases

Submitted papers will be evaluated on the basis of significance, originality, technical quality, and exposition. Accepted papers will be published in a printed Springer LNBIP proceedings. Papers should clearly establish the research contribution, and relation to previous research. Position, survey and industry papers are also welcome. Authors of the best workshop paper will be invited to submit an extended version of the paper to International Journal of Information System Modeling an Design.

IMPORTANT DATES
Paper Submission: March 4, 2012
Notification of acceptance: March 20, 2012
Camera ready: March 23, 2012
Workshop: June 26, 2012

SUBMISSION DETAILS
Papers should be submitted in PDF format and must not exceed 14 pages. The results described must be unpublished and must not be under review elsewhere. Submissions must conform to Springer's LNBIP formatting rules. Further authoring instructions are available at: http://www.springer.com/computer/lncs?SGWID=0-164-6-791344-0. Three to five keywords characterizing the paper should be indicated at the end of the abstract. It is expected that at least one author of each accepted paper will register for and attend the workshop. Papers should be submitted via the EasyChair submission system found at  https://www.easychair.org/conferences/?conf=grcis2012

CO-CHAIRS
Dr Marta Indulska
UQ Business School
The University of Queensland

Dr Michael zur Muehlen
Howe School of Technology Management
Stevens Institute of Technology

Dr Shazia Sadiq
School of Information Technology and Electrical Engineering
The University of Queensland

Dr Yao-Hua Tan
Faculty of Technology, Policy, and Management
Delft University of Technology

ASSOCIATE EDITOR
Dr Sietse Overbeek
Faculty of Technology, Policy, and Management
Delft University of Technology

CONTACT
Email: grcis AT business.uq.edu.au