- 期刊
ISO27001認證之關鍵成功因素評估
Assessing the Critical Success Factors of ISO 27001 Certification
摘要
在資訊科技爆炸時代,資訊安全管理系統已成為各組織營運之最優先考量因素;資訊安全漏洞將造成企業之危機,風險發生原因及其影響也將帶來革命性的變化,為求組織永續發展及營運安全,不斷資訊安全管理系統評估、預防管理及立即應變計畫乃必然之防範作為。本研究以實踐大學高雄校區ISO27001系統認證為例,透過資管系受過ISO27001稽核員訓練課程54小時之同學為對象,進行問卷調查,運用投票式權重評選模式,評選「政策與規劃、執行與管理、檢查與矯正、管理審查」之ISO27001認證關鍵成功因素,排列優先順序,做為企業或大學導入ISO27001認證之參考。
並列摘要
In this era of information technology explosion, the information security management system (ISMS) assessment has become a top consideration of the organization operations considerations. The ISMS vulnerabilities will cause the enterprise crisis, the causes and impact of ISMS will also bring revolutionary change. This study is to use the ISO27001 certification to assess Shih Chien University Kaohsiung Campus. All students who attend the survey are the information management students with 54 hours in ISO27001 auditor course the voting-ranking model is used to evaluate and calculate the weights of critical success factors (CSF) for ISO27001 certification. Who study concludes with the rank so ”policy and planning, execution and management, checking and correction, management reviews”.
參考文獻
延伸閱讀
- 蘇世豪(2010)。電信業驗證ISO27001關鍵成功因素之研究〔碩士論文,國立臺北大學〕。華藝線上圖書館。https://www.airitilibrary.com/Article/Detail?DocID=U0023-2207201023493300
- 韓慧林、王貴民、李依庭、翁珮容、林意苒、梁慧珍(2015)。A電子公司ISO14001認證之關鍵成功因素。危機管理學刊,12(2),11-22。https://doi.org/10.6459/JCM.201509_12(2).0002
- 林昆平(2014)。ISO27001資訊安全品質管理系統風險評鑑作業經驗分享(上)。品質月刊,50(1),23-27。https://www.airitilibrary.com/Article/Detail?DocID=10173692-201401-201402100019-201402100019-23-27
- 陳耀茂、鄭憶莉(2001)。ISO9000驗證取得與結果性指標之相關關係的探討。品質月刊,37(3),91-95。https://www.airitilibrary.com/Article/Detail?DocID=10173692-200103-37-3-91-95-a
- 林宇溱(2015)。The key success factors of implementing ISO 27001 in the information security policy〔碩士論文,中原大學〕。華藝線上圖書館。https://doi.org/10.6840/cycu201500619