摘要
本文分析了各种信息风险及其风险框架,对一般控制与应用控制进行了比较分析。详细讨论了组织控制、系统开发与维护控制、系统安全控制、硬件及系统软件控制、操作控制等控制方法。
Some kinds of IT risk and infrastructure risk are discussed in this article, and the general control and the application control have been compared, Analyze the methods of organization control, system development and maintenance control, system security control, hardware and software control in detail
出处
《价值工程》
2005年第12期87-89,共3页
Value Engineering
关键词
IT风险
风险控制
信息系统
IT risk
risks control
information systems