学生论文
|
论文查询结果 |
返回搜索 |
|
|
|
| 论文编号: | 13694 | |
| 作者编号: | 2320200729 | |
| 上传时间: | 2022/12/6 10:47:10 | |
| 中文题目: | T公司数据安全脱敏系统建设项目风险管理研究 | |
| 英文题目: | Research on Risk Management in the Construction Project of T Company''s Data Security Desensitization System | |
| 指导老师: | 石鉴 | |
| 中文关键字: | 通信运营商;脱敏系统建设项目;项目风险管理;数据安全; | |
| 英文关键字: | Communication Operator;Desensitization System Construction Project;Project Risk Management;Data Security; | |
| 中文摘要: | 近年来,大数据(big data)一词越来越被大家所熟知,人们用其描述海量数据,而随着云时代到来,数据价值愈发凸显。为了进一步放大数据价值,数据在公司内部流转同时,还要在行业内或者跨行业间共享,这就在无形中增加了信息泄露的风险。尤其近十年,随着“数据价值是第一要素”这一理念被各行各业所推崇,数据价值挖掘领域在世界范围内出现了百花齐放的现象。但同时也出现了大批数据安全泄露事件,数据安全能力是实现数据价值的第一推手,数据安全防护工作刻不容缓。根据国家工信部要求,通信运营商采用数据安全脱敏技术进行系统数据安全防护,T公司为J省本地的通信运营商之一,根据T集团公司整体部署,将开展数据安全脱敏系统(简称脱敏系统)上线工作,对系统内部敏感数据进行脱敏化操作,以便为公司内部和跨行业数据价值变现提供安全生产保障。 本文在撰写过程中,通过理论结合实践,围绕T公司脱敏系统项目建设的全过程,重点研究实际项目中的风险问题,结合项目风险管理理论与项目自身特点,借助风险管理方法,进行风险管理规划,识别,评估,应对,监控等环节,构建一套风险监控体系,降低潜在风险对项目的影响程度。同时,积累通信运营商在项目风险管理的经验,为今后T公司其他风险管理工作提供思路和参考。 本文聚焦于脱敏系统项目的风险管理,首先在文章开头对研究背景及意义进行了说明,通过梳理研究项目风险管理的相关文献,对涉及的相关概念、模型、方法进行解释。然后结合项目背景借用德尔菲(Delphi)法进行了具体风险因素识别工作,以定性分析法(历史资料法)和定量分析法(FMEA,全称Failure Mode & Effect Analysis)相结合的方式,评估出风险因素优先级排序。其次,依据风险因素优先级,有的放矢的进行了风险应对工作。最后建立起了完备的风险监控体系,使T公司的风险管理和应对能力得到进一步提升。 关键词:通信运营商;脱敏系统建设项目;项目风险管理;数据安全; | |
| 英文摘要: | In recent years, the term "big data" has become more and more familiar. People use it to describe massive data. With the advent of the cloud era, the value of data has become increasingly prominent. In order to further amplify the value of data, data must be shared within or across industries while circulating within the company, which increases the risk of information leakage virtually. Especially in the past ten years, with the concept of "data value is the first element" being highly praised by all walks of life, the field of data value mining has seen the phenomenon of a hundred flowers blooming all over the world. But at the same time, a large number of data security leaks have occurred. Data security capability is the first driver to realize the value of data, and data security protection work is urgent. According to the requirements of the Ministry of Industry and Information Technology of the People's Republic of China, communication operators use data security desensitization technology to protect system data security. T Company is one of the local communication operators in J Province. According to the overall deployment of T Group Company, the data security desensitization system (hereinafter referred to as the desensitization system) will be launched online to desensitize sensitive data within the system, so as to provide safety production guarantee for the realization of data value within the company and across industries. In the process of writing this thesis, through the combination of theory and practice, focusing on the whole process of T Company's desensitization system project construction, it focuses on the risk problems in the actual project. Combining the project risk management theory and the project's own characteristics, with the help of risk management methods, it carries out risk management planning, identification, evaluation, response, monitoring and other links, and builds a risk monitoring system to reduce the impact of potential risks on the project. At the same time, accumulate the experience of communication operators in project risk management, and provide ideas and references for other risk management work of T Company in the future. This thesis focuses on the risk management of desensitization system projects. First, it explains the research background and significance at the beginning of the article. By combing the relevant literature on project risk management, it explains the relevant concepts, models and methods involved. Then, in combination with the project background, the specific risk factor identification was carried out by using the Delphi method, and the priority ranking of risk factors was evaluated by combining the qualitative analysis method (historical data method) and quantitative analysis method (FMEA, full name Failure Mode&Effect Analysis). Secondly, according to the priority of risk factors, we made targeted risk response. Finally, a complete risk monitoring system has been established to further enhance the risk management and response capabilities of T Company. Key words:Communication Operator;Desensitization System Construction Project;Project Risk Management;Data Security; | |
| 查看全文: | 预览 下载(下载需要进行登录) |