| The government informationization helps to optimize the governmentworking process and structure as well as improve the service efficiency to thesocial public,on the other hand,brings a lot of security risks,such as thenatural,the physical and the social environment,etc. The F commission,as animportant government organization,once the information system has anyproblem,will exert a huge impact on the government daily work,importantinformation,even threaten the national security and social stability.It is of greatsignificance to ensure the F commission information system run safely andstably.As an important way to judge whether the information stystem is safe,therisk assessment of information security plays an important role in theconstruction and running of the information system.Combined with the actual situation of the F Commission,the thesis hasanalyzed the information security status,designed the risk assessment methodsand models in accordance with the actual needs of the F Commission within-depth study of the relevant standards and specifications,described in detail themain content of risk assessment of each phase of the work,discussed thetarget,contents and method of assessment preparation,risk identification,analysisas well as response for risk assessment.Using the existing documentdata,questionnaire,professional tools to identify asset,threats andvulnerability.Applying the expert scoring method to get the asset value,thefrequency of threats occurrence and the severity of vulnerability,to calculate therisk value and classification to set risk control and conunter measures.Citing the government information system of the F commission as anexample,I’ve successfully identified the information security risks and had propercontrol on as well as conunter measures to the unacceptable risks,helped toimprove the information safety level and the stability of the information system. |
PDF Full Text Request