本文選題：商業(yè)銀行 + 信息系統(tǒng)　； 參考：《遼寧大學》2012年碩士論文

【摘要】：隨著銀行信息化的深入發(fā)展,銀行幾乎所有的業(yè)務都是通過計算機機系統(tǒng)來收集、加工和處理的。銀行業(yè)務的發(fā)展對信息系統(tǒng)的依賴性越來越高,由于信息系統(tǒng)自身的信息技術風險特點及在對信息系統(tǒng)風險管理中存在的疏漏,往往會對信息系統(tǒng)安全、穩(wěn)定和可靠運行產生威脅并有可能產生嚴重后果,近幾年來一些金融機構發(fā)生的信息系統(tǒng)風險事件更進一步表明,保障銀行信息系統(tǒng)安全運行的重要性,同時,這些風險事件也促使監(jiān)管部門加大了對商業(yè)銀行信息科技風險的監(jiān)管力度。而F銀行在十幾年短暫、快速的信息化發(fā)展建設過程中,也面臨和應對著各種各樣的信息技術風險,如何控制、預防這些風險,保證信息系統(tǒng)安全、穩(wěn)定、可靠的運行,是F銀行實施IT戰(zhàn)略過程所必須關注的重要問題。可以說,只要銀行應用信息技術,依賴于信息系統(tǒng),就存在信息技術風險,就會影響信息系統(tǒng)的運行安全,那么銀行對信息系統(tǒng)的風險管理就是一件任重而道遠的工程。 本文就是在此內、外部背景下,對F銀行信息系統(tǒng)運行階段風險控制問題展開研究的。本文基于COSO內部控制理念框架、ITIL最佳實踐、ISO27001信息安全、COBIT等國際標準與方法,結合銀行業(yè)監(jiān)管部門要求、制定的標準,分析F銀行核心信息系統(tǒng)運行風險,找出運行階段風險控制過程中存在管理缺陷和技術漏洞,制定適合實際系統(tǒng)運行環(huán)境與發(fā)展建設的風險控制對策,并在具體實施中對控制措施提供必要的保障。 通過對信息系統(tǒng)運行風險控制問題的研究,可以進一步提高全體員工和管理者對信息系統(tǒng)風險防范認識,豐富和完善信息系統(tǒng)運行風險管理體系,同時通過局部的風險控制建設,促進全面的IT風險管理體系建設,為F銀行信息系統(tǒng)安全、穩(wěn)健、高效的運行搭建夯實的IT平臺,最終實現企業(yè)IT戰(zhàn)略實施與經營戰(zhàn)略發(fā)展相適應與統(tǒng)一。
[Abstract]:With the development of bank informatization, almost all banking business is collected, processed and processed by computer system. The development of bank business is more and more dependent on information system. Because of the characteristics of information technology risk and the omissions in risk management of information system, it is often safe to information system. Stable and reliable operations pose a threat and can have serious consequences. The information system risk incidents that have occurred in some financial institutions in recent years have further demonstrated the importance of ensuring the safe operation of banking information systems, while, at the same time, These risks have also prompted regulators to step up the supervision of IT risks in commercial banks. In the course of the short and rapid development of information technology in more than ten years, Bank F is also facing and coping with various kinds of information technology risks. How to control and prevent these risks and ensure the safe, stable and reliable operation of information systems, It is an important issue that F Bank must pay attention to in the process of implementing IT strategy. It can be said that as long as banks apply information technology and rely on information systems, there will be information technology risks, which will affect the operation security of information systems. In this paper, the risk control of F bank information system is studied in this paper. Based on the framework of COSO internal control concept and international standards and methods such as ISO27001 information security and COBIT, this paper analyzes the operational risk of core information system of F bank in accordance with the requirements of banking supervision department. This paper finds out the management defects and technical loopholes in the process of risk control in the operation stage, and formulates the risk control countermeasures suitable for the operation environment and development construction of the actual system, and provides the necessary guarantee for the control measures in the concrete implementation. Through the research on risk control of information system operation, we can further improve the understanding of risk prevention of information system, enrich and perfect the risk management system of information system operation. At the same time, through the construction of local risk control, we can promote the construction of comprehensive IT risk management system, and build a solid IT platform for the safe, stable and efficient operation of F bank information system. Finally realize the enterprise IT strategy implementation and management strategy development adapts and unifies.
【學位授予單位】：遼寧大學
【學位級別】：碩士
【學位授予年份】：2012
【分類號】：F832.2

【參考文獻】

相關期刊論文 前10條

1 何茂春;;商業(yè)銀行信息科技風險的量化計量研究[J];金融論壇;2009年02期

2 王棟;來風剛;李靜;;數據中心IT運維審計體系研究[J];電力信息化;2012年01期

3 葉貴添;;商業(yè)銀行信息科技風險分析及管理策略[J];硅谷;2010年08期

4 于海霞;;我國IT審計面對的挑戰(zhàn)[J];中國管理信息化;2011年11期

5 王蘭征;;銀行業(yè)IT運維現狀及風險成因分析[J];華章;2012年09期

6 駱寧;;銀行業(yè)信息技術風險管理中存在的問題及建議[J];華南金融電腦;2009年02期

7 任莉;;我國銀行信息化風險及防范對策研究[J];經濟論壇;2009年12期

8 龔偉華;;IT運維亟待管理流程化[J];金融電子化;2009年02期

9 翟海濤;;對我國中小城市商業(yè)銀行信息系統(tǒng)建設的思考[J];金融科技時代;2011年08期

10 ;建設銀行IT審計實施策略[J];金融電子化;2010年08期

，

本文編號：1816344