Study On The Risk Factors Assessment Of System Testing During Management Information System Development

Informatization is the inevitable process of social development. Enterprise informatization construction has achieved rapid development, many companies are active in or preparing to build enterprise information systems. Quality of information system as an important factor has restricted the effectiveness of information systems. Information system testing as an effective quality assurance method comes into being.Information system testing can greatly improve the quality of information system, but our information system in the process of testing implementation still exist many problems. Information system has certain technical characteristics and engineering law, while there are some risks. Therefore, how to identify the information system testing risks is the key issue to be discussed at present. Because it can enhance the reliability of information systems obviously. On this basis, this article will study the risks during testing phase in the information systems development for the information system successfully applied in the enterprise and laying a solid foundation.This paper elaborates the concept, principle and implementation procedures of the risk assessment first.Then we use the method which is based on Systems Security Engineering Capability Maturity Model, combines the characteristics of information system testing itself, also refers to the theoretical knowledge on risk quantity to build the framework of the risk during the information testing phase. To further determine the indicator system of risk factors, we starting from the literature review, the paper summarizes the possible factors of information testing. Then using Delphi method and questionnaire, risk factors in the testing phase are sorted and filtered, By factor analysis approach, the risk index system in the test phase is constructed. For the specific risk indicator, this article described the sources of risk, influence and preventive measure .This will provide a theoretical basis for risk assessment.On this basis, the paper will apply the indicator system into the practical case so as to prove the correctness and operability of the index system. Through the study of evaluation method, this paper choose fuzzy analytic hierarchy process and fuzzy comprehensive evaluation method to determine the index. We use F-AHP to determine weights, and apply fuzzy comprehensive evaluation method to assess the overall risk. According to the results of analysis of enterprise information system risk in the process of test, the key link lays the foundation for the risk control work.