A Study Of Information Security Risk Management On Outsourcing Project From Japan

Due to the abundant human resources,low cost,and the proximity to Japan,software outsourcing from Japan has developed rapidly in China in recent years,and the economic growth caused by it cannot be ignored.Company A is a relatively experienced enterprise.When studying the information security risk management of Company A's outsourcing project,the topic background and the research status at home and abroad have been studied in detail.The definition,characteristics and classification of enterprise project information are studied.The source and the classification of enterprise project information risk are discussed.Project information risk is divided into the risk of natural and man-made events.There are many types of human event risks,including subjective malice,subjective and unintentional behavioral risk.The factors of project information risk are identified and classified,and the questionnaire method and the analytical hierarchy process are adopted.We found that the leaking of project information and the construction of enterprise internal information security system are the two most significant risks for outsourcing enterprises.The project information risk is discussed from two management aspects,both external and internal.The external risk management strategy includes the improvement of laws and regulations,the construction of risk informatization and the construction of risk prevention and control system.The internal management strategy includes risk safety training,construction of relevant system and establishment of risk assessment system.By standardizing the project information task of outsourcing projects from Japan,the management of enterprise's project information security risk can be improved.The safeguard measures of information risk management strategy for outsourcing projects from Japan include safeguard measures of external and internal risks,as well as the project information standardization strategy.Safeguard measures of external risks include strengthening enterprise organizational structure,controlling information fraud and building information management system.The safeguard measures of internal risk management include strengthening the control of enterprise information management and perfecting the assessment incentive mechanism.The standardization of project information includes the construction of enterprise's culture and the improvement of enterprise information and supervision me chanism.Through the research on the information security risk management of outsourcing projects from Japan,this paper provides some significant reference for the security control of outsourcing projects from Japan.