Research On Risk Assessment Of Electronic Records

The essence of information security management is risk management ,and the prerequisite and basis for risk management is risk assessment. To protect the information security of Electronic Records, its precondition is to carry out risk assessment of Electronic Records.The three main aspects of carrying out the risk assessment of Electronic Records are as follows. First, the relationship between information security and risk assessment should be defined. on a systematic summary the development history of Electronic Records information security management and the traditional information security management program of Electronic Records, the problems existing in the traditional information security management of Electronic Records should analyzed in depth,then you will recognize that the risk assessment of Electronic Records is very necessary and feasible;Second, exploring some suitable theory and methods for risk assessment of Electronic Records, and defining the clearly reference standards and specific forms of risk assessment; Third, systematic analyzing the basic elements of risk assessment and their mutual relations , knowing the basic flow, and constructing the implementation framework for risk assessment of Electronic Records which can guide its detailed practice, what's more, the feasibility and effective of its implementation framework can be validated by a specific case of risk assessment.