Commercial Bank Information Security Management System Construction
|Keywords||Agricultural Bank of China Information Security ManagementSystem architecture design|
China’s banking industry informatization construction after nearly three decades of development, information technology has become a basic platform for the efficient operation of banks and enhance the core competitiveness of an important means Meanwhile, the banking industry is highly dependent on information technology making the IT system security, reliability and effectiveness is directly related to the security of the entire banking and financial system stability. As China’s banking industry gradually accelerated pace of technological progress, especially in recent years, concentration of banking information and data continues to improve, online banking and other new business channels the rapid development of information risk has become a stable operation of banking institutions is another important risks.Agricultural Bank recognizes continuing operations for the protection of information security, and healthy development of the importance of information technology has been incorporated into a comprehensive risk management among risk and information security management has made some basic work, but there are still lack of uniform information security management planning, the lack of comprehensive information security system and other issues. It is in this context, this paper attempts both theory and practice in the upper surface of the Agricultural Bank proposed a framework for information security management system, covering policies and standards, organization and personnel, operations management, and information security technology and other major aspects, improvements in banking information in the risk management level, but also help to enhance the core competitiveness of the Agricultural Bank.This paper is divided into five parts. The first chapter introduces the research background of this paper, the main research topics and research methods; Chapter Ⅱ of the current field of international information security standards and classical methods are summarized, with a focus on the domestic banking information security laws and regulations of the sort and review, this study establishes the angle; proposed framework for this study; chapter to the Agricultural Bank, for example, commercial banks in the current status of information security risk management and the main risks were analyzed; fourth chapter in depth based on the analysis of the Agricultural Bank of information security risks overall architecture of the system planning and design; fifth chapter is a refinement of the overall architecture and implementation, mainly from the information security policies and standards, organization and personnel, operations management, and information four aspects of security technologies ABC’s information security management system for a specific design. Chapters IV and V are the main contents of this article.