Modeling the Organizational Regulatory Space: A Joint Design Approach

We present an approach for the joint design of organizational regulatory spaces (ORS). The approach was validated through action research, integrating the components of context, people, process, information, and IT. The design of the ORS is usually performed by distinct teams, with unconnected viewpoints, using different vocabularies and tools. Similarly to information systems, there are business experts that define the regulatory goals and rules. The ORS modeling is problematic, and is fragmented. We have adopted the O2 framework to provide a common level of abstraction for the design. The result is a comprehensive and layered map of the ORS. This approach has proved to offer an effective representation of the ORS for external auditors and business associations. Internally, we provide organizations with new ways to model, communicate, and improve the regulatory space.

[1]  Norris Syed Abdullah,et al.  Information Systems Research: Aligning to Industry Challenges in Management of Regulatory Compliance , 2010, PACIS.

[2]  K John Holmes,et al.  Regulatory Models and the Environment: Practice, Pitfalls, and Prospects , 2009, Risk analysis : an official publication of the Society for Risk Analysis.

[3]  Shazia Wasim Sadiq,et al.  Managing Regulatory Compliance in Business Processes , 2015, Handbook on Business Process Management.

[4]  Marwane El Kharbili Business Process Regulatory Compliance Management Solution Frameworks: A Comparative Evaluation , 2012, APCCM.

[5]  Y. Pigneur,et al.  Compliance Management is Becoming a Major Issue in IS Design , 2009 .

[6]  Marta Indulska,et al.  A Compliance Management Ontology: Developing Shared Understanding through Models , 2012, CAiSE.

[7]  J. R. G. Wood,et al.  A further exploration into information systems development: the evolution of Multiview2 , 1998, Inf. Technol. People.

[8]  Tine Herreborg Jørgensen,et al.  Integrated management systems: three different levels of integration , 2006 .

[9]  Mohamed Zairi,et al.  Business process management: a boundaryless approach to modern competitiveness , 1997, Bus. Process. Manag. J..

[10]  João Barata,et al.  ISO2: A New Breath for the Joint Development of IS and ISO 9001 Management Systems , 2013, ISD.

[11]  L. Hancher,et al.  Organizing Regulatory Space , 1998 .

[12]  Karlheinz Kautz,et al.  Persistent problems and practices in information systems development , 2007, Inf. Syst. J..

[13]  Sangkyun Kim,et al.  Auditing methodology on legal compliance of enterprise information systems , 2011, Int. J. Technol. Manag..

[14]  Christine Parker,et al.  Reinventing Regulation within the Corporation , 2000 .

[15]  John Mylopoulos,et al.  Establishing Regulatory Compliance for Software Requirements , 2011, ER.

[16]  Ian Sommerville,et al.  Viewpoints: principles, problems and a practical approach to requirements engineering , 1997, Ann. Softw. Eng..

[17]  Olaf Zimmermann,et al.  Compliance by design - Bridging the chasm between auditors and IT architects , 2011, Comput. Secur..

[18]  Ping Zhang,et al.  IT Artifacts and The State of IS Research , 2011, ICIS.

[19]  Jon Iden,et al.  Investigating process management in firms with quality systems: a multi-case study , 2012, Bus. Process. Manag. J..

[20]  Bill Curtis,et al.  A field study of the software design process for large systems , 1988, CACM.

[21]  Marta Indulska,et al.  Emerging Challenges in Information Systems Research for Regulatory Compliance Management , 2010, CAiSE.

[22]  Ian Sommerville,et al.  Socio-technical systems: From design methods to systems engineering , 2011, Interact. Comput..

[23]  Steven E. Poltrock,et al.  Working around official applications: experiences from a large engineering project , 2011, CSCW '11.

[24]  Daniel Amyot,et al.  Integrating business strategies with requirement models of legal compliance , 2010, Int. J. Electron. Bus..

[25]  Krzysztof Czarnecki,et al.  A case study on consistency management of business and IT process models in banking , 2014, Software & Systems Modeling.

[26]  M. Hult,et al.  TOWARDS A DEFINITION OF ACTION RESEARCH: A NOTE AND BIBLIOGRAPHY , 1980 .

[27]  Mārīte Kirikova,et al.  Enterprise Modeling for Respecting Regulations , 2012 .

[28]  G. Susman,et al.  An Assessment of the Scientific Merits of Action Research. , 1978 .

[29]  Ilze Buksa,et al.  Determining the Role of Enterprise Modeling for Respecting Regulations , 2012, PoEM.

[30]  Antonio J. Alencar,et al.  A method for validating the compliance of business processes to business rules , 2010, SAC '10.

[31]  Robert M. Davison,et al.  Principles of canonical action research , 2004, Inf. Syst. J..

[32]  Duncan Sanderson,et al.  Coordinating joint design work: the role of communication and artefacts , 1998 .

[33]  Tok Wang Ling,et al.  Conceptual Modeling - ER 2011, 30th International Conference, ER 2011, Brussels, Belgium, October 31 - November 3, 2011. Proceedings , 2011, ER.

[34]  Jane P. Laudon,et al.  Management Information Systems: Managing the Digital Firm , 2010 .

[35]  Michael D. Myers,et al.  The qualitative interview in IS research: Examining the craft , 2007, Inf. Organ..

[36]  Schahram Dustdar,et al.  Compliance in service-oriented architectures: A model-driven and view-based approach , 2012, Inf. Softw. Technol..