@conference { ISI:000371495900003, title = {Model ISR3M for assessing maturity of IS risk management process Case study}, booktitle = {2012 COLLOQUIUM ON INFORMATION SCIENCE AND TECHNOLOGY (CIST{\textquoteright}12)}, series = {Colloquium in Information Science and Technology}, year = {2011}, note = {IEEE Colloquium on Information Science and Technology (CIST), Fez, MOROCCO, OCT 22-24, 2012}, pages = {16-21}, publisher = {IEEE; IEEE Morocco Sect; IEEE Morocco Comp \& Commun Joint Chapter; USMBA IEEE Student Branch; Faculty of Sciences Dhar Mahraz; Faculty of Technical Sciences of Fez; IEEE Comp Soc; IEEE Commun Soc}, organization = {IEEE; IEEE Morocco Sect; IEEE Morocco Comp \& Commun Joint Chapter; USMBA IEEE Student Branch; Faculty of Sciences Dhar Mahraz; Faculty of Technical Sciences of Fez; IEEE Comp Soc; IEEE Commun Soc}, abstract = {We aim through this article to contribute to the development of information system (IS) governance and more specifically of IS risk management (RM). We then propose a maturity model for IS risk management and we implement it on a case study following all the steps in the model designed. Those steps are: defining the list of information systems of the organization, measuring the maturity for each of those IS taking into account the evolution in its life cycle, measuring the consolidated maturity of IS risk management process for the organization.}, isbn = {978-1-4673-2725-1}, issn = {2327-185X}, author = {Elmaallam, Mina and Kriouile, Abdelaziz}, editor = {ElMohajir, M and Begdouri, A and ElMohajir, BE and Zarghili, A} }