There currently exists a growing trend to externalize and automate increasingly complex and critical processes of organization services and operations by using business process management systems. These processes are ever threatened by security risks due to the exposure of business processes to external and third parties outside the control of the organizations. Thereby, there exists a growing interest in improving the quality of these processes in order to ensure conformance and compliance in the management of security risks during all the phases of business process life-cycle. Nevertheless, there is a need for comprehensive framework for automatically managing and ensuring compliance and conformance of security risk requirements. To this end, this thesis dissertation propose a framework (OPtimization of BUsiness process Security, OPBUS) for the improvement of the dependability of the life-cycle of business process management in both design and run- time stages. The framework presents an enhancement of the business process management life-cycle with risk management capabilities at design time and fault tolerance at run- time.