A Case Study on Risk Management of Enterprise Information Security

被引：0

作者：

Huang, Rengen ^{[1
]}

Zhu, Zhen ^{[1
]}

机构：

[1] Foshan Univ, Foshan 528000, Peoples R China

来源：

2015 2nd International Conference on Creative Education (ICCE 2015), Pt 2 | 2015年 / 11卷

关键词：

Information security; Risk management; Risk assessment; Comparison matrix; Risk handling;

D O I：

暂无

中图分类号：

G40 [教育学];

学科分类号：

040101 ; 120403 ;

摘要：

Based on a case for constructing information security system in an inorganic materials manufacturing enterprise, this paper discusses the concepts of information security, information security management and information security risk management. The framework of information security system and the construction procedure of information security risk management system are introduced. In the work process of risk appraising, all risk factors are sorted by using comparison matrix. So, the risk handling scheme is designed to implement in two stages according to the order of priority. The practice has proved that it is necessary to take active and effective measures in risk recognizing and risk controlling. Only in this way enterprise can effectively reduce the risk probability, or decrease the loss once risk occurs.

引用

页码：201 / 208

页数：8

共 9 条

[1] Enterprise information security strategies
Anderson, Evan E.
Choobineh, Joobin
[J]. COMPUTERS & SECURITY, 2008, 27 (1-2) : 22 - 29
[2] [Anonymous], HINDAWI MATH PROBL E
[3] Liu Renyong, 2007, INFORM SECURITY COMM, P113
[4] Saleh MohamedS., 2011, Applied Computing and Informatics, V9, P107
[5] Xu Donghua, 2008, MODERN INFORM, P129
[6] Zhang Hao, 2010, ELECT POWER IT, V8, P21
[7] Zhao H.C., 1986, Analytic Hierarchy Process
[8] Zhao Yujin, 2010, SYS SECURITY AUG, P65
[9] Zhu Hao, 2010, CHINA QUALITY CE OCT, P44

← 1 →