Ic Manufacturing Information Security Risk Management Model And The Implementation Of Applications

With the continuous deepening of information construction, and it's increasingly wide application of modern enterprises, information systems have become the indispensable support platforms required by daily operations. Information security problems have attracted people's attention. Information security is a multi-level, multi-factor dynamic process, requiring companies to the entire information systems and organizational systems, as well as business management and staff to conduct a comprehensive consideration and unified planning.The biggest problem on information security's lies in facing all sorts of risks. How to reduce these risks to a minimum level is became the top priority task of information security. From the current situation, the understanding of information security in many enterprises has still remained at the simple equipment protection level at the theoretical stage, the construction of information security is often a concoction of security products, lack of comprehensive, systemic of risk management and targeted system construction and the correct implementation method. Therefore, how to combine the theory and practice of information security risk management to in-depth research, and to provide strong guidance and effective protection for the information security for the enterprise, it has become a worthy of attention and urgent to solve problem.IC manufacturing is an important base of the modern information products manufacturing and the important competitive foundation of high technology application, its rich knowledge innovation, production process complex, requiring high degree of cooperation, with special requirements of information assets security risk management. From the domestic and foreign relevant fields of the existing research results, these areas still lack of in-depth research of information security risk management, and the targeted risk management model and the implementation method of application.This article will mainly for the IC manufacturing information risk management's characteristics and demands, based on the reference and analysis of the current variety of information security risk management model, combination the actual situation of PDCA management models and IC manufacturing information security, to construct a suitable for IC manufacturing information security risk management of dynamic process model, and its conduct the specific implementation and applications, and as the actual case for the background of specific analysis and elaboration in implementation and application model.According to the special requirements of information assets security management in IC manufacturing, this thesis applied qualitative and quantitative analysis method to identify the confidentiality, integrity and availability of information assets, and improve the risk management and its calculation algorithm, so as to propose a suitable model for the risk control of information assets in IC manufacturing.This thesis provided a new dynamic process model for information security and its risk management in IC manufacturing field, and demonstrated its application of implementation with a successful case. Research work in this thesis provided some new ideas, models and tools for information security and its risk management in IC manufacturing field.