|
|
计算机应用研究 2005
Self-assessment of Information Security Risks in Enterprises and Design of Its Procedure
|
Abstract:
Firstly, two kinds of modes of information security risk assessment in the enterprises named self-assessment and other-assessm ent are analyzed, their advantages and disadvantages being pointed out. Then the assessment factors and principles of self-assessment are discussed. Finally , an implementation procedure for self-assessment of enterprises is designed, and each link of this procedure is carried on comparatively deep analysis, at the sa me time, this procedure is appraised.
