| With the coming of the network economy times, great development has occurred in the industry of information technology outsourcing. Meanwhile, the requirement of the information security has also changed a lot, form protecting one computer from leasing information to protecting the whole network. And also, the concept of information security is developing. The connotation of this concept has included more things as people and natural features than only computers and networks. The requirement of information security has become the focus of all fields in the society. Hereby, outsourcing the information security is consequently becoming the new hot topic in the information security field.In this dissertation, the main focus is on the control of information security outsourcing and the management framework.The dissertation first begins to introduce the theory of information security outsourcing and the domestic and abroad status in quo of its development;it also expounds the malpractices existing in the domestic information security outsourcing market. Afterwards, it systemically analyses the risks in the information security outsourcing procedure;while in order to resist and elude the risks, it is recommended that organizations adopt the means to build an information security outsourcing mainframe to manage outsourcing through aspects of outsourcing procedure, organization's framework, outsourcing control and the relationship with outsourcer. While in the process of building the outsourcing management framework, the most important part is to control the outsourcing activities. Thus the dissertation expatiates on the control regulation, so as to build a quantity-related method to control the outsourcing action during the outsourcing procedure. Finally, a case is introduced to better understand the control of information security outsourcing and the management framework. |
PDF Full Text Request