IMPLEMENTATION AND DESIGN OF SECURE BUSINESS PROCESS MODELS BASED ON ORGANISATIONAL GOALS

IMPLEMENTATION AND DESIGN OF SECURE BUSINESS PROCESS MODELS BASED ON ORGANISATIONAL GOALS

Business processes are essential instruments used for the coordination of organisational activities in order to produce value in the form of products and services. Information security is an important non-functional characteristic of business processes due to the involvement of sensitive data exchanged between their participants. Therefore, potential security shortfalls can severely impact organisational reputation, customer trust and cause compliance issues. Nevertheless, despite its importance, security is often considered as a technical concern andtreatedasanafterthoughtduring thedesignof informationsystems and the business processes which they support.