| In order to actively respond to the national laws and regulations related to cyber security,Company Z guarantees the company's stable and orderly development,by drawing on the best practices of intranet security risk management research experience,reviewing the company's intranet management status,and carrying out research on intranet security risk management systems Implement and implement the intranet security risk management system to reduce the occurrence of hidden security risks.Based on papers in the field of risk management in recent years,this thesis first uses the literature analysis method to draw on information security management system standards and security control best practices and other angles to sort out and summarize intranet security risks and formulate intranet risk security management indicators;then adopt The Delphi method judges the rationality of the intranet security risk indicators,and establishes the Z company intranet security risk indicator system,which includes 4 first-level indicators,13 second-level indicators and 46 third-level indicators.Importance scoring;Then,a hierarchical analysis method is used to build a hierarchical model of the index system.By converting the importance score,the weight coefficients of each index and the comprehensive ranking of each index are calculated to obtain the company Z intranet security risk The weights of the first-level indicators are operation risk,system risk,tool risk and organizational risk in order;finally,for the company Z intranet security risk hierarchical model,the intranet security risk management is designed from different angles of prevention risk,transfer risk and acceptance risk.The response plan and introduce the results of the response plan.The research results of the thesis provide risk management methods for the company Z's intranet security system construction,and also provide reference and reference value for the intranet security risk management norms. |
PDF Full Text Request