Our colleagues David G. Rosado, Luis Enrique Sánchez, Antonio Santos-Olmo and Eduardo Fernández-Medina of the GSYA group along with Ángel Jesús Varela-Vaca, María Teresa Gómez Lopez and Rafael Martínez Gasca of the IDEAS group of the University of Seville have published the article “Enabling security risk assessment and management for business process models”, in the Journal of Information Security and Applications (IF 3.8, Q2). DOI: https://doi.org/10.1016/j.jisa.2024.103829. The article is accessible under an Open Access license.