学生论文
|
论文查询结果 |
返回搜索 |
|
|
|
| 论文编号: | 12269 | |
| 作者编号: | 2120172988 | |
| 上传时间: | 2021/3/3 14:13:23 | |
| 中文题目: | 中小企业信息安全管理机制研究 | |
| 英文题目: | Research on Information Security Management Mechanism of Small and Medium-sized Enterprises | |
| 指导老师: | 李月琳 | |
| 中文关键字: | 中小企业;信息安全;信息安全系统;管理机制 | |
| 英文关键字: | Small and medium-sized enterprises;Information security;Information security system;Management mechanism | |
| 中文摘要: | 摘要 如何完善企业的信息安全机制并建立适合企业的信息安全管理机制,对企 业信息资源与资产安全进行保护,是现阶段企业信息化必然面对的重点、热点 问题。 对一个企业而言,信息安全管理机制是其开展日常工作、实现战略决策目 标的重要保障,重要性可见一斑。本文拟对中小企业信息安全管理机制进行优 化,而信息安全管理模型是抽象化对信息安全管理机制的描述,因此结合已有 的 HTP 信息安全管理模型和 PDCA 信息安全管理模型,提出 IEPDCA 模型,对 该模型的提出、特点、可行性、应用性进行分析,并将其应用在实际案例中, 评测其实际效果。对此,本文以 B 企业为对象企业,通过实地考察、访谈获知 B 企业的信息安全管理现状及问题,设计改进方案,通过 IEPDCA 模型的具体应 用,协助 B 企业构建起一个包括组织体系、管理体系、技术体系多层次的信息 安全管理机制,在渗透测验环境中验证了该机制的有效性,即证明了 IEPDCA 模型适用于构建中小企业的企业信息安全管理机制。因此,中小企业可根据 IEPDCA 模型构建出一个完全融入企业管理的信息安全管理机制,进而对本企业 的数据信息完整性、保密性、可用性进行保护。 | |
| 英文摘要: | Abstract How to improve the enterprise information security mechanism and establish the information security management mechanism suitable for the enterprise, and protect the enterprise information resources and assets security, is the key and hot issue that the enterprise information must face at this stage. For an enterprise, information security management mechanism is an important guarantee to carry out daily work and achieve strategic decision-making goals. This paper intends to optimize the information security management mechanism of small and medium-sized enterprises, and the information security management model is the abstract description of the information security management mechanism. Therefore, combined with the existing HTP information security management model and PDCA information security management model, this paper puts forward IEPDCA model, analyzes the proposal, characteristics and feasibility of the model, and applies it to the actual case to evaluate the actual situation International effect. In this regard, this paper takes enterprise B as the object. Through on-the-spot investigation and interview, we get the information security management status and problems of enterprise B, and design the improvement scheme. Through the specific application of IEPDCA model, we can help enterprise B build a multi-level information security management mechanism including organization system, management system and technical system. The effectiveness of the mechanism is verified in the penetration test environment That is to say IEPDCA model is suitable for the construction of enterprise information security management mechanism of small and medium-sized enterprises. Therefore, according to IEPDCA model, small and medium-sized enterprise can construct an information security management mechanism which is fully integrated into enterprise management, and then protect the integrity, confidentiality and availability of data information of the enterprise. | |
| 查看全文: | 预览 下载(下载需要进行登录) |