@article{MTMT:36939252,
	title = {DEVELOPING A COMPREHENSIVE RISK MANAGEMENT MODEL FOR INTEGRATED ELECTRICITY PROVIDERS: INSIGHTS FROM ISO 22301-BASED FINANCIAL IMPACT ANALYSIS},
	url = {https://m2.mtmt.hu/api/publication/36939252},
	author = {Sutarmin, Sutarmin and Fitriani, Lisa},
	doi = {10.37403/sultanist.v14i1S.825},
	journal-iso = {SULTANIST},
	journal = {SULTANIST: Jurnal Manajemen dan Keuangan},
	volume = {14},
	unique-id = {36939252},
	issn = {2338-4328},
	abstract = {This study explores financial resilience strategies for integrated electricity service providers in navigating global turbulence, including regulatory pressures and energy transition, cyber threats, exchange rate volatility, and disruptions in primary energy supply chains. The analysis integrates the Risk Maturity Index (RMI) and Business Impact Analysis (BIA) based on ISO 22301 standards—commonly applied to operational aspects, but in this study extended to financial dimensions. The research employs a mixed approach: quantitative descriptive methods and qualitative inquiry through case studies, interviews, observations, document analysis, stress testing, risk heat mapping, and scenario sensitivity testing. The findings indicate that the company remains at a low level of risk maturity (RMI 2.4 – developing phase) and faces significant strategic risks in liquidity, tariff setting, infrastructure reliability, and cybersecurity. Applying financial BIA provides a clearer risk landscape, identifies crisis triggers, and formulates recovery strategies that enhance business continuity capabilities. The study recommends strengthening asset management, improving human resource capacity, and exploring financial instruments for risk mitigation. Overall, these findings contribute to the development of a comprehensive risk management model that is particularly relevant for strategic public service enterprises.},
	year = {2026},
	eissn = {2686-2646},
	pages = {26-46}
}

@article{MTMT:36293029,
	title = {Standardi in skladnost v IT projektih: integracija standardov ISO 27001/22301/9001 v vodenje projektov},
	url = {https://m2.mtmt.hu/api/publication/36293029},
	author = {Bradač, Ester},
	doi = {10.31449/upinf.258},
	journal = {Uporabna informatika},
	volume = {2025},
	unique-id = {36293029},
	issn = {1318-1882},
	abstract = {Članek obravnava integracijo standardov ISO 27001, ISO 22301 in ISO 9001 v vodenje IT projektov. Poudarja, da hkratna uporaba teh standardov prispeva k večji učinkovitosti, skladnosti, varnosti in odpornosti projektov. Na podlagi pregleda literature in izzivov iz prakse je predstavljen model, ki te standarde umešča v vse faze projektnega cikla. Integracija omogoča boljše upravljanje tveganj, višjo kakovost izvedbe ter večje zaupanje deležnikov, zato se predlaga sistematičen pristop z integracijo kot ključno razvojno usmeritev za projektno vodenje v kompleksnih IT okoljih.},
	year = {2025},
	eissn = {2630-435X},
	pages = {1-8}
}

@book{MTMT:36543067,
	title = {RANGKA KERJA PROSES PENILAIAN RISIKO PENGURUSAN KESINAMBUNGAN PERKHIDMATAN SEKTOR AWAM MALAYSIA},
	url = {https://m2.mtmt.hu/api/publication/36543067},
	author = {Nur, Shafinaz Binti Zolkeply},
	publisher = {Universiti Kebangsaan Malaysia},
	unique-id = {36543067},
	year = {2025}
}

@article{MTMT:36147531,
	title = {Automated cybersecurity impact propagation across business processes using process mining techniques},
	url = {https://m2.mtmt.hu/api/publication/36147531},
	author = {Raptaki, Melina and Stergiopoulos, George and Gritzalis, Dimitris},
	doi = {10.1007/s10207-025-01040-0},
	journal-iso = {INT J INF SECUR},
	journal = {INTERNATIONAL JOURNAL OF INFORMATION SECURITY},
	volume = {24},
	unique-id = {36147531},
	issn = {1615-5262},
	abstract = {Business Impact Analysis (BIA) evaluates how cyberattacks affect essential business processes and IT assets. Traditionally conducted through manual interviews by consultants, this approach is often inefficient and prone to errors and omissions. In this paper, we present an automated methodology leveraging process mining to assess the impact of cybersecurity incidents on business processes. This methodology extracts event logs from information systems to construct business dependency graphs, quantify impact propagation across them, and integrate cybersecurity risk inputs from security officers. Tested on procurement workflows for an international transportation company, and compared with established baselines as well as the insight and knowledge of the company itself, our methodology proved to be effective at identifying risks stemming from a cybersecurity incident without significant labor, as well as uncovering high-risk paths that weren’t yet identified, resulting in actionable insights. This is an extended and revised version of this methodology, evaluated with an extensive case study encompassing a company’s BIA, historical data and expert opinion, first presented in Raptaki (IEEE Access 12: 194322–194339, 2024).},
	year = {2025},
	eissn = {1615-5270},
	pages = {1-17}
}

@article{MTMT:35648118,
	title = {Automated Event Log Analysis with Causal Dependency Graphs for Impact Assessment of Business Processes},
	url = {https://m2.mtmt.hu/api/publication/35648118},
	author = {Raptaki, Melina and Stergiopoulos, George and Gritzalis, Dimitris},
	doi = {10.1109/ACCESS.2024.3520420},
	journal-iso = {IEEE ACCESS},
	journal = {IEEE ACCESS},
	volume = {2024},
	unique-id = {35648118},
	year = {2024},
	eissn = {2169-3536},
	pages = {1-1},
	orcid-numbers = {Stergiopoulos, George/0000-0002-5336-6765; Gritzalis, Dimitris/0000-0002-7793-6128}
}

@inproceedings{MTMT:32790983,
	title = {A megfelelési kockázatok értékelése},
	url = {https://m2.mtmt.hu/api/publication/32790983},
	author = {Benedek, Petra},
	booktitle = {Ember és technológia - A karbantarás jelene és fenntartható jövője},
	unique-id = {32790983},
	year = {2022},
	pages = {61-68}
}

@book{MTMT:33691597,
	title = {Information Technology Disaster Recovery Planning},
	url = {https://m2.mtmt.hu/api/publication/33691597},
	author = {Chan, Patrick},
	publisher = {University of the Cumberlands},
	unique-id = {33691597},
	year = {2022}
}

@article{MTMT:32769125,
	title = {Evolución y modelos de implementación de sistemas de gestión de continuidad del negocio},
	url = {https://m2.mtmt.hu/api/publication/32769125},
	author = {Becerra Acevedo, Rocío and Benavides Muñoz, John Richard and Camacho Camacho, Hernando and Obando, Claudia Janeth},
	doi = {10.15332/24631140.6669},
	journal-iso = {SIGNOS},
	journal = {SIGNOS - Investigación en sistemas de gestión},
	volume = {13},
	unique-id = {32769125},
	issn = {2145-1389},
	year = {2021},
	eissn = {2463-1140},
	pages = {171-201}
}

@article{MTMT:32769140,
	title = {Algorithm for selecting business risk management methods},
	url = {https://m2.mtmt.hu/api/publication/32769140},
	author = {M., Akhmetvalieva and O., Zinnatullina},
	journal = {Politbook},
	volume = {3},
	unique-id = {32769140},
	issn = {2227-1538},
	year = {2020},
	eissn = {2307-4590},
	pages = {135-151}
}