摘要
数字时代,客户对金融机构的信任来自信息安全。随着时代的发展和数据、信息安全治理水平的逐步提高,金融机构运用企业级安全组件加强了技术管控措施,使自身客户信息安全管控能力和精细化管理水平稳步提升,但其在数据管理、业务融合、技术开发、数据应用等方面还存在基础性不足,在互联网产品安全技术、客户敏感信息和数据保护、数据离线使用、特色业务系统、外包及与第三方合作等领域的信息安全防控尤为薄弱,给客户信息安全带来一定的潜在风险。金融机构应从数据治理、客户信息安全管理和信息安全等方面加强技术管控措施,提升管控能力和精细化管理水平,切实维护客户和自身利益。
In digital era,the confidence of the customers on financial institutions comes from information security.With the development of the era,and the gradual improvement of data and information security governance,financial institutions have strengthened the technological management measures with enterprise-class security components,stably improved their customers’information security management and refinement management level.There are disadvantages in data management,business development,and data application,etc.Information security prevention and control is particularly weak in the fields of Internet product security technology,sensitive customer information and data protection,data offline use,characteristic business systems,outsourcing and cooperation with third parties.These have brought potential risks for the customers’information security.It is necessary to promote technological management from data governance,customer’s information security management and information security,improve management ability and refinement management level,to protect customers’and their benefits.
作者
徐鑫
Xu Xin(Institute of Petrochemistry Heilongjiang Academy of Sciences,Harbin 150040,China)
出处
《黑龙江科学》
2023年第7期130-136,共7页
Heilongjiang Science
关键词
金融机构
信息安全管理
风险防控
Financial institutions
Information security management
Risk prevention and control
