淡江大學機構典藏:Item 987654321/90580
English  |  正體中文  |  简体中文  |  全文笔数/总笔数 : 62805/95882 (66%)
造访人次 : 3902916      在线人数 : 339
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library & TKU Library IR team.
搜寻范围 查询小技巧:
  • 您可在西文检索词汇前后加上"双引号",以获取较精准的检索结果
  • 若欲以作者姓名搜寻,建议至进阶搜寻限定作者字段,可获得较完整数据
    •  进阶搜寻


    jsp.display-item.identifier=請使用永久網址來引用或連結此文件: https://tkuir.lib.tku.edu.tw/dspace/handle/987654321/90580


    题名: 個人資料檔案之設計與保護實作初探:稽核人員宜具備的知識與技能
    其它题名: A Study on Personal Information File Design and Implement: Based on the Knowledge and Skills for Auditors
    作者: 樊國楨;林惠芳;林樹國;黃健誠
    贡献者: 淡江大學資訊管理學系
    关键词: 稽核;驗證機構;資訊安全管理系統;管理系統標準;標準化;audit;Certification Bodies (CB);Information Security Management System (ISMS);Management System Standards (MSS);standardization
    日期: 2012-05
    上传时间: 2013-06-30 22:54:36 (UTC+8)
    出版者: 中壢市:中央大學
    新北市:Airiti Press Inc.
    摘要: 標準可以累積知識與經驗,標準化則是冀求以系統的、共同協調一致之方法來強化標準實作的知識以供傳承。鑑於管理系統日益增多,驗證機構(Certification Bodies,簡稱CB)及其稽核(Audit)能力之問題日益滋增,宜加以規範,國際標準組織(International Standardization for Organization,簡稱ISO)自1999年起即分2階段進行CB管理系統標準之ISO/IEC 17021:2011(E)增加CB稽核人員的知識與能力之強制性要求,12年的工作已告一段落,並成為管理系統標準(Management System Standards,簡稱MSS)的組件。根基於此,本文以個人資料系統法規之要求及MSS中的紀錄管理系統,探討於資訊安全管理系統(Information Security Management System,簡稱ISMS)稽核已顯現的問題並提出宜強化之建議。
    Standards can help to accumulate knowledge and experiences, while standardization aims to make use of systematic and coherent methods for reinforcing and passing down the knowledge of standard implementation. As management systems increases gradually, there are more and more problems concerning Certification Bodies (CB) and their Audit ability. In order to regulate these problems, International Standardization for Organization (ISO) has set about compulsory demands for improving the knowledge and ability of CB auditors by applying ISO/IEC 17021:2011(E) of CB management system standard in two phases since 1999. This twelve-year task has been accomplished and become the components of Management System Standards (MSS). As a result, according to the requests of the enactment of personal data systems and the record management systems in MSS, this paper plans to investigate the existing audit problems in Information Security Management System (ISMS) and put forward some possible solutions.
    關聯: 前瞻科技與管理=Journal of Advanced Technology and Management 2(2),頁147-174
    显示于类别:[資訊管理學系暨研究所] 期刊論文

    文件中的档案:

    档案 描述 大小格式浏览次数
    index.html0KbHTML211检视/开启
    index.html0KbHTML51检视/开启
    個人資料檔案之設計與保護實作初探 稽核人員宜具備的知識與技能.pdf6158KbAdobe PDF0检视/开启

    在機構典藏中所有的数据项都受到原著作权保护.

    TAIR相关文章

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library & TKU Library IR teams. Copyright ©   - 回馈