Governance, risk and compliance: Applications in information systems

The Special Issue of Information Systems Front presents selected best papers from the 1st International Workshop on Governance, Risk and Compliance - Applications in Information Systems (GRCIS), which was held in conjunction with the 20th International Conference on Advanced Information Systems Engineering (CAiSE 2008). The first paper, entitled 'RiskM: A multi-perspective modeling method for IT risk assessment' presents a modeling approach that facilitates visual representation of risks and a process for the assessment of IT risks. The second paper, entitled 'The enactment of risk categories: The role of information systems in organizing and re-organizing risk management practices in the energy industry' presents a longitudinal case study to explore the use of information systems for risk management in the utility sector. Another paper, entitled 'Effective Information Technology (IT) Governance Mechanisms: An IT Outsourcing Perspective', presents a theory-based model of effective IT governance and discuss the outcomes of the empirical testing of the model.