| Information security issue is more and more prominent and eventually becomes one keyproblem for stabilizing daily operation and maintaining competitive edge for corporationsaccompanied with the progress of the IT development for the financial companies. Internallythe financial companies want to ensure meeting the regulations of the administration, enhancethe security and stability of the corporate IT system and prevent IT system accidents andpromote corporate images by strengthening IT technical risk management architecture andsystem, creating correspondent control methods.At the same time the financial regulations released relevant laws to increase theregulative efficiency for helping financial companies enhance understanding of the ITtechnical risk management, assist regulations supervising more effectively,lead corporateinvesting rationally, increase its ability for information security and risk managementtherefore improving the development for the corporation in the long run.Facing the requirements for the IT technical risk managements raised both from insideand outside factors around companies, it becomes one of the biggest challenges for companyto raise the management level from IT security management to IT technical risk managementat the same time catching the opportunities to solve the problems occurred in the internal ITtechnical control daily operations and effectively improve IT technical managementstandards.Firstly this article discusses about the features and best practices of the risk managementfor the financial companies, explores the direction for corporate risk management studies bycarefully analyzing the current status of the IT technical risk management in the financialindustry.Secondly, it helps to build up close loop system for corporate IT technical riskmanagement, realize total IT risk management and increase the all-out capability and efficiency of risk management for the financial corporations based on the evaluation of thecurrent risk situation of the financial corporations.Thirdly, in order to create the effective risk management system and build IT technicalrisk evaluation models for financial industry,it provides toolshed to assess the corporate ITmore accurately and lay foundation for the following up risk supervise and control thereforeeffectively improving standard of the corporate IT technical risk management.Finally, we hope to enable companies to recognize, calculate, supervise and controlthe IT technical risks and through accessing and overseeing the effectiveness of the riskcontrol to ensure IT to give business its reliable support, help corporate IT system operatingwith security, consistency and stability therefore increasing the core competence and longterm develop ability.This thesis built a set of IT technical risk management systems fits for the financialcorporations through the studies for the IT technical risk management combining the currentsituation for the corporate IT technical risk management in the financial industry. It creates afull range IT technical risk management mechanism to realize total risk management, secureIT technical risk management from information assets identification, weak points and threatsjudgment, risk points verification, risk treatment, risk re-evaluation and risk supervisionthrough practice. At the same time it creates a set of IT risk evaluation models to lay thefoundation of IT technical risk management mechanism as long as working as a managementtool which also providing theoretical framework for improving corporate IT technical riskmanagement in order to carry out accurate evaluation and management of the IT riskmanagement. |
PDF Full Text Request