本文關(guān)鍵詞：S銀行信息安全人為影響因素及對策研究　出處：《東華大學(xué)》2016年碩士論文　論文類型：學(xué)位論文

  更多相關(guān)文章： 信息安全 人為影響因素 信息系統(tǒng)

【摘要】：信息系統(tǒng)已經(jīng)逐漸成為社會各個領(lǐng)域不可或缺的基礎(chǔ)設(shè)施,人們在享受信息技術(shù)所帶來的巨大利益的同時也面臨著信息安全問題的嚴(yán)峻考驗。對于銀行來說,信息系統(tǒng)覆蓋了組織內(nèi)所有的業(yè)務(wù)處理,為客戶提供渠道服務(wù),為組織內(nèi)部運(yùn)營管理和辦公提供信息服務(wù)。隨著信息化的不斷深入,信息資產(chǎn)越來越重要,面臨的安全威脅也越來越越多,造成的危害也越來越大,銀行正面臨前所未有的信息安全風(fēng)險。S銀行建立了全行性信息安全管理和決策機(jī)構(gòu)—總行信息科技管理委員會,該機(jī)構(gòu)由總行科技管理部和分行信息科技管理領(lǐng)導(dǎo)小組構(gòu)成,該機(jī)構(gòu)負(fù)責(zé)對S銀行全行信息安全管理規(guī)章制度、信息安全相關(guān)策略、信息安全報告評估等重大事項進(jìn)行審議,推動全行深入開展信息安全管理工作。S銀行信息安全防護(hù)技術(shù)手段主要包括對外和對內(nèi)兩個方面,對外防御外部的攻擊和入侵,對內(nèi)保護(hù)企業(yè)信息泄露,從而保障企業(yè)信息安全。通過對S銀行信息安全現(xiàn)狀的梳理,同時對S銀行和同行業(yè)信息安全事件進(jìn)行回顧,信息安全事件發(fā)生的原因可分為人員因素、技術(shù)因素、環(huán)境因素。人員是企業(yè)信息安全管理中最重要的因素,任何信息安全相關(guān)活動都離不開人員。企業(yè)信息系統(tǒng)的設(shè)計、投產(chǎn)、運(yùn)營和維護(hù)都是由人員來完成。本研究對目前信息安全人為影響因素風(fēng)險文獻(xiàn)進(jìn)行梳理,特別是信息安全人為影響因素的分類和成因,并根據(jù)S銀行信息安全存在的問題,編制S銀行信息安全人為影響因素問卷表,對200名員工進(jìn)行問卷調(diào)研,采用SPSS統(tǒng)計軟件對問卷結(jié)果進(jìn)行分析。對調(diào)查問卷數(shù)據(jù)進(jìn)行題項、可靠性和效度分析,并通過描述性統(tǒng)計分析S銀行信息安全人為影響因素狀態(tài)。再通過獨(dú)立樣本T檢驗和單因素方差分析,研究S銀行信息安全人為影響因素在人口統(tǒng)計變量上的差異,結(jié)果顯示性別、年齡、學(xué)歷、工齡、職位層次在S銀行信息安全人為影響因素上不存在顯著差異。最后S銀行信息安全人為影響因素進(jìn)行相關(guān)分析,結(jié)果顯示個體心理特征因子和其他三個因子(員工安全意識、信息安全自我認(rèn)識和能效、組織和環(huán)境因素)無顯著相關(guān)關(guān)系。員工安全意識、信息安全自我認(rèn)識和能效、組織和環(huán)境因素三個因子彼此之間具有顯著正相關(guān)。根據(jù)研究結(jié)果,結(jié)合S銀行信息安全存在的問題,提出S銀行信息安全優(yōu)化對策,包括信息安全文化建設(shè)、信息安全培訓(xùn)長效機(jī)制建立和加強(qiáng)有效溝通的建議,降低S銀行信息安全人為風(fēng)險。
[Abstract]:Information system has gradually become an indispensable infrastructure in all fields of society. People are facing the severe test of information security while enjoying the huge benefits brought by information technology. The information system covers all the business processing in the organization, provides the channel service for the customer, provides the information service for the organization internal operation management and the office. With the development of the information technology, the information assets become more and more important. The more security threats they face, the greater the harm they pose. Bank is facing unprecedented information security risk. S Bank has established the all Bank Information Security Management and Decision-making Organization-head Office Information Technology Management Committee. The organization is composed of the head office science and technology management department and the branch information technology management leading group. The organization is responsible for the information security management rules and regulations and information security related strategies of S bank. Information security report evaluation and other important issues to be considered to promote the Bank's in-depth information security management work. S bank information security protection technical means mainly include external and internal two aspects. External defense against external attacks and incursions, internal protection of enterprise information leakage, so as to ensure enterprise information security. Through the S bank information security status quo combing. At the same time, the information security events of S bank and the same industry are reviewed. The causes of information security incidents can be divided into personnel factors, technical factors, environmental factors. Personnel are the most important factors in the enterprise information security management. Any information security related activities can not be separated from personnel. The design, production, operation and maintenance of enterprise information system are accomplished by personnel. Especially the classification and cause of information security human factors. According to the problems of S bank information security, the questionnaire table of S bank information security human factors is compiled, and 200 employees are investigated. SPSS statistical software was used to analyze the results of the questionnaire. The questionnaire data were analyzed by item, reliability and validity. And through descriptive statistical analysis of S bank information security artificial factors, and then through independent samples T-test and single-factor ANOVA. To study the difference of human factors of information security in S bank in demographic variables, the results show that gender, age, education, length of service. There is no significant difference in the position level in the artificial factors of information security in S bank. Finally, the correlation analysis of artificial factors of information security in S bank is carried out. The results showed that there was no significant correlation between individual psychological factors and the other three factors (employee safety awareness, information security self-awareness and energy efficiency, organizational and environmental factors). Information security self-awareness and energy efficiency, organization and environmental factors have significant positive correlation with each other. According to the research results, combined with S bank information security problems. The optimization countermeasures of information security of S Bank are put forward, including the construction of information security culture, the establishment and strengthening of effective communication mechanism of information security training, and the reduction of artificial risk of information security in S Bank.
【學(xué)位授予單位】：東華大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2016
【分類號】：TP309;F832.33

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 魏嚴(yán);信息安全形勢:不容樂觀[J];電子展望與決策;2000年06期

2 吳曉波;談網(wǎng)絡(luò)信息安全問題[J];現(xiàn)代情報;2000年05期

3 劉愛民;我國信息安全的發(fā)展思路[J];中國計算機(jī)用戶;2000年12期

4 王偉軍;;網(wǎng)絡(luò)信息安全問題的根源分析[J];圖書館雜志;2000年04期

5 ;信息安全是保證信息化發(fā)展的必要手段[J];電信科學(xué);2001年12期

6 楊光亮;關(guān)注信息安全[J];w攣胖蕓，

本文編號：1441539