Title :
Research on risk control system ITG-HRCM in IT governance
Author :
Yuan Wei-hua ; Wang Hong ; Zhang Jian ; Qi Wen-jing
Author_Institution :
Sch. of Comput. Sci. & Technol., ShanDong Normal Univ., Jinan, China
Abstract :
In this paper, based on the preliminary research results K-PRS-ISMCS and PRS-ISMCS, a variety of risks existed in the process of IT governance are firstly analyzed; then a full-life cycle, multi-layered structure of IT risk governance ITG-HRCM (Hierarchical risk control model) integrated with ERMF and COBIT based on PRS-ISMCS is put forward with the description of the model function; thirdly a kind of improved risk quantization and calculation method is described; finally the work of experimental simulation is done to various risks in the process of IT governance, which proves that ITG-HRCM with its improved risk quantitative calculation method can meet the demand and expectations of information security objectives in IT governance.
Keywords :
information systems; risk management; security of data; COBIT; ERMF; IT risk governance; K-PRS-ISMCS; control objectives for information and related technology; hierarchical risk control model; information security objectives; risk control system ITG-HRCM; risk quantitative calculation method; risk quantization; Educational institutions; Maintenance engineering; IT Governance; Information Systems (IS); information security risk; risk management;
Conference_Titel :
Information Technology in Medicine and Education (ITME), 2012 International Symposium on
Conference_Location :
Hokodate, Hokkaido
Print_ISBN :
978-1-4673-2109-9
DOI :
10.1109/ITiME.2012.6291472
