摘要
本文在分析巴塞尔新资本协议操作风险和实际工作的基础上,提出将信息资产作为商业银行一类特殊产品线,采用信息安全管理体系ISO27001完善和细化操作风险管理,以此提升风险管理和内控能力。
Based on the analysis of the Basel Capital operational risk and practical work, this paper puts forward information assets as a class of special product line for a commercial bank. The method of information security management system ISO27001 is presented, which can refine and improve operational risk management, then enhance the ability to internal control.
出处
《金融理论与实践》
北大核心
2009年第5期51-54,共4页
Financial Theory and Practice
基金
国家自然科学基金项目(编号:70871002)资助
教育部人文社会科学研究规划基金项目(编号:07JA630004)资助