英文翻譯~尋找貼切的答案

運用風險管理的概念來做資訊安全管理,儼然已成為實現資訊安全的重要方法,但是組織推動資安風險評估的時候,須了解單位的特性與目的,適當選擇評估方法並投入配套的資源。目前一般的問題包括:高層管理階層的支持度不足、缺乏足夠適合的評估人員掌控評估流程與分析資訊、沒有重要的運作領域評估成功範例以及參與人員的教育訓練及準備的問題,都是造成風險評估推展的阻力。

已更新項目:

此外還有

實現風險評估的方法係透過提供網頁操作、網頁結合風險訓練與學習、網頁設計成方便的操作介面及指示、系統自動評估計算、自動整合資訊等五項設計原則,完成具圖形介面的跨平台評估系統,供評估人員使用。增加風險評估實務上方便性、減少推展困難。最後,將一個風險評估的實際案例,藉操作本系統實作產生風險評估文件,以證明本系統的方便與實用。本研究所提出的評估網站,可以簡單的獲得資安風險評估雛型文件,達到節省評估人力、時間與資源,具實務上的參考價值。

1 個解答

評分
  • 最佳解答

    Makes the information safety control using risk management's concept, just like has become realizes the information security important method, but organizes promotes the capital peaceful risk assessment, must understand that unit's characteristic and the goal, choose the appraisal method suitably and invest the necessary resources. At present the general question includes: The senior management social stratum's support insufficiency, the deficient foot 夠 suitable appraisal personnel to control the appraisal flow and the analysis information, the important operation domain have not appraised the successful model as well as participate in the question which personnel's education and training and prepares, creates the resistance which the risk assessment promotes.

    還有

還有問題?馬上發問,尋求解答。