|其他題名: ||The influence of implementing information security policy of the bank.|
|作者: ||董毓國;Tung, Yu-kwo|
|關鍵詞: ||資訊安全;內部控制;資訊治理;Information security;Internal Control;information governance|
|上傳時間: ||2010-01-11 01:27:46 (UTC+8)|
|摘要: || 加入世貿組織為我國銀行業帶來契機，惟也帶來嚴峻挑戰，其中金融資訊安全問題最為關鍵，當經濟全球化後首先是資訊全球化，隨著各方面進入資訊時代，在銀行業廣泛運用資訊化中扮演著非常重要的角色；銀行業是國民經濟發展的核心與樞紐，涉及到社會生活的種種，一旦有相關安全案件發生，將會引發信用危機，造成社會不穩定。|
The accession to the World Trade Organization (WTO) brings the turning point for our country’s banking industry. But, it also brings severe challenges, in which the financial information security problem is most essential. Information is the first globalized after the economic globalization has been done. As everything enters the information epoch, it plays extremely important role to widely utilize information in the banking industry. The banking industry is the core and key for national economy development. It involves everything in social life. Once any case relevant to information security takes place, the credit crisis will be caused and it will make the society unstable.
The banking industry is one of the industries which most highly invested and utilized the information technology (IT). The application of IT has nearly covered all present information products. Under the principle of bank management’s security, beneficial and fluidity, it will significantly impact success or failure of the bank. While the information operation has already permeated to bank management in all aspects, it becomes the infrastructure and the basic request for the bank’s sales expansion. Therefore, the financial information security is significant key point in the bank’s management. The banking industry is so important, it relates to whole country’s economy and the people''s livelihood. The security and reliable operation of financial system is important guarantee for economy development and the social stability.
The management principle of banking industry is converted to treat customer as the center of everything. To expand the financial product and improve its service quality, the foundation is financial informationization construction. To protect herself and customer’s data and important property, the banks follow the laws drawn up by the government authorities, like Ministry of Finance, Ministry of Economic Affairs, and Ministry of Justice and so on, and establish their own information security policy and strategy. The strategy should be an exhaustive document. It records the protective measures on bank’s information property. The bank uses this document to achieve the internal security control as well as to enhance staff’s training. It makes the security policy to be full implement from top to down and reach the good system of security management.
The security frame for the financial informationization construction must follow the requirement of government authorities - Ministry of Finance, and obey the law promulgated by Law Department. In accordance to the WTO strategy simultaneously, it’s necessary to understand European and American important financial laws and regulations, as well as the relevant news. To adjust bank’s management strategy and the information security policy, and to promote competition in the global banking industry for survival. However, based on this important subject about information security for internal control and the information management, what kind of interactive relation will be there between the government and the bank? It is the topic that we are going to study in the text.