Summary of Information Security Risk Management Standard System

Journal of Information Security Research ›› 2018, Vol. 4 ›› Issue (10): 928-933.

Previous Articles Next Articles

Summary of Information Security Risk Management Standard System

Received:2018-10-11 Online:2018-10-15 Published:2018-10-11

信息安全风险管理标准体系研究

高亚楠, 刘丰, 陈永刚

国家信息中心信息与网络安全部

通讯作者: 高亚楠
作者简介:高亚楠国家信息中心，工程师，主要研究方向为网络安全。刘丰国家信息中心，高级工程师，主要研究方向为网络安全。陈永刚国家信息中心，高级工程师，主要研究方向为网络安全。

Abstract

Abstract: Information security risk management is an important cornerstone of the development of information security in China. Based on the investigation of the current information security risk management standard system, this paper analyzes the problems existing in the standard system, and puts forward the scientific construction method and system framework of the risk management standard system under the new situation, aiming at improving Scientific and practical of information security risk management in China.

Key words: risk management standard system, risk management, risk assessment, information security assurance work, framework, framework construction method

摘要： 信息安全风险管理是我国信息安全保障工作开展的重要基石.通过对当前国内外信息安全风险管理标准体系制定情况的调研，分析新形势下既有标准体系存在的问题，提出了新形势下风险管理标准体系的科学构建方法和体系框架，旨在进一步提高我国信息安全风险管理相关工作的科学性和实用性.

关键词: 风险管理标准体系, 风险管理, 风险评估, 信息安全保障工作, 体系框架, 体系建构方法

高亚楠刘丰陈永刚. 信息安全风险管理标准体系研究[J]. 信息安全研究, 2018, 4(10): 928-933.

[1]	. Research on the Framework of High Security Mobile Office System Based on Wide Board Mobile Communication [J]. Journal of Information Security Research, 2020, 6(4): 327-337.
[2]	. Multi-dimensional Account Management and Control System Based on Risk Assessment [J]. Journal of Information Security Research, 2020, 6(11): 0-0.
[3]	. Study on Industrial Control Security Technology in Oil Production Area of an Oil Field [J]. Journal of Information Security Research, 2019, 5(8): 696-702.
[4]	. Enlightenment from the Serious Cybersecurity Risks of “Trident” Nuclear Submarine [J]. Journal of Information Security Research, 2019, 5(7): 586-591.
[5]	. Research and Practice of Information Security Management System in Open Electronic Payment Network Environment [J]. Journal of Information Security Research, 2019, 5(6): 534-541.
[6]	. The Construction of Personal Information Protection in the Precision Marketing of Internet Advertisement [J]. Journal of Information Security Research, 2018, 4(8): 760-768.
[7]	. Research on Financial Data Security Management Based on Data Life Cycle [J]. Journal of Information Security Research, 2018, 4(6): 548-554.
[8]	. A Static Tagging Method of Malicious Code Family Based on Multi-Feature [J]. Journal of Information Security Research, 2018, 4(4): 322-328.
[9]	. Risk Assessment Algorithm of Software Vulnerability Based on Sigmoid Function [J]. Journal of Information Security Research, 2018, 4(11): 993-996.
[10]	. Risk Assessment Service Capability Maturity Model Research [J]. Journal of Information Security Research, 2018, 4(10): 889-897.
[11]	. The Practice of Network Security Risk Assessment in EGovernment [J]. Journal of Information Security Research, 2018, 4(10): 898-903.
[12]	. Research on Information Security Risk Assessment of Power Industry Control System [J]. Journal of Information Security Research, 2018, 4(10): 904-913.
[13]	. Vulnerability Risk Assessment of IoT System Based on Game Model [J]. Journal of Information Security Research, 2018, 4(10): 914-921.
[14]	. An Application of OCTAVE Method in the Risk Assessment of E-Government Extranet System [J]. Journal of Information Security Research, 2018, 4(10): 922-927.
[15]	. Research on the Implementation Model of Information Security Risk Assessment [J]. Journal of Information Security Research, 2018, 4(10): 934-939.

Summary of Information Security Risk Management Standard System

信息安全风险管理标准体系研究

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics