Method of information system risk analysis and its application

VernacularTitle:信息系统风险分析方法及应用
Author: Yajuan MENG ; Jia CUI
Publication Type:Journal Article
Keywords: Risk analysis; Risk classification; level-defense; Information system
From: Chinese Journal of Hospital Administration 2009;25(10):693-696
CountryChina
Language:Chinese
Abstract: Based on computer and network technologies,the information system has grown into an important part for normal operation of hospitals,pushing up the importance of its risk analysis and defense.This article briefly described general methods and processes of risk analysis for information system,brought forward methods of risk classification and level-defense to identify and manage risks effectively,highlighted the importance of risk analysis,after-defense evaluating and tracking.This method is called into play to identify risks exposure of the information system of Beijing Red Cross Blood Center,contributing to a risk response table,developing a sustained improvement process for risk identification,control,appraisal and tracking,with defense carried out in specific system upgrading projects.