摘要
当前,IT风险已成为银行风险的重要组成部分。人民银行作为金融业关键信息基础设施运行的管理部门,迫切需要加强自身IT风险应急管理理论和实践方面的研究。文章针对人民银行应急评估工作现状和存在问题,总结国内外有关应急评估经验,以序关系分析法(G1)和熵值法为基本方法,构建了以IT应急能力评估指标集为核心的应急评估量化模型。通过评估某系统,实证检验和分析了该评估模型的可行性和有效性,初步建立起基层央行IT风险应急能力评估体系。
In recent years, IT risk have been an important part of bank’s risk. The People,s Bank of China(PBC), as the management department of critical information infrastructure of banks, should enhance the research on IT risk management both theoretically and practically.In this paper, we summarized related emergency assessment experience. Based on the order relation analysis (G1) and entropy method, we have constructed IT risk assessment index set for the emergency response capability of PBC. Based on assessing and evaluating certain information system, we verified the indicator model is feasible and effective, and then initially established the IT risk response capability evaluation system.
出处
《信息网络安全》
2015年第11期84-89,共6页
Netinfo Security
关键词
应急能力
指标体系
G1法
熵值法
emergency response capabilities
indicator systems
G1 method
entropy method