Risk management in e-business

The aim of this course is to train students for independent research work in the field of risk management in e-business. A special goal is to acquaint students with the standards and frameworks for risk management in e-business and train them to apply them.

Students are introduced to advanced methods and techniques for risk management in e-business. Students are trained to make operational and strategic decisions as well as the choice of risk management framework in e-business. Also, students are trained in risk management in research projects.

Risk management methodology in e-business. Digital transformation and risk management. Adaptive IT risk management. Basics of GRC discipline (Governance, risk management and compliance – GRC). GRC frames. GRC data warehousing and business intelligence. GRC based on knowledge management. Fundamentals of enterprise risk management (ERM). Definition of risk. Types of risks: gambling, business, financial, strategic, operational, environmental, IT risks. COBIT 5 IT management framework. COBIT 5 risk management framework. ERM frameworks and principles: COSO, NIST. ISO risk management standards: ISO 3100, ISO / IEC 27000. Development of risk management systems in e-business enterprises. Risk identification and analysis in e-business projects. Risk classification. Risk planning, scheduling and monitoring. Development of a risk management plan. Risk management in e-business projects. Agile e-business project management. Specifics of risk in scientific research projects. Adaptive risk management in research projects. Information security management. E-business continuity management. Threat detection and incident management. IT audit. Cyber risk management. Types of cyber risk. Types and estimation of losses. Cybersecurity maturity levels. Cyber security management lifecycle and phases:

cybersecurity assessment, secure configuration and design, monitoring and surveillance, , secure hardware and software, incident preparedness. Cyber risk insurance. Security management in the cloud environment. Security management in smart environments. Secure IT infrastructure design: zero trust architecture, blockchain. Application of artificial intelligence in risk management. Risk management and social responsibility. Human, legal and ethical issues of risk management.

1. B. Radenković, M. Despotović-Zrakić, Z. Bogdanović, D. Barać, A. Labus, E-business, ISBN 978-86-7680-304-0; Faculty of Organizational Sciences,Belgrade, 2015.
2. Labus, M., Despotović-Zrakić, M., Bogdanović, Z., Barać, D., Popović, S.: Adaptive E-Business Continuity Management: Evidence from the Financial Sector. Computer Science and Information Systems, 2020
3. Labus M., Despotović-Zrakić M., Bogdanović Z. (2017) Introducing Adaptive E-Business Continuity Management. In: Rocha Á., Correia A., Adeli H., Reis L., Costanzo S. (eds) Recent Advances in Information Systems and Technologies. WorldCIST 2017. Advances in Intelligent Systems and Computing, vol 569. Springer, Cham.
4. B. Radenković, M. Despotović-Zrakić, V. Vujin, Z. Bogdanović, Dušan Barać, Identity as a service in educational cloud, SED 2012, 5th International Confrence Science and Higher Education in Function of Sustainble Development, Proceedings on CD, October 4-5, 2012
5. Materials in e-form from the e-learning portal www.moodle.elab.fon.bg.ac.rs