Author(s): |
feng YANG, College of Economics and Management, University of Electronic Science and Technology of China, Chengdu, P.R.China, 610054 pei-ji SHAO, College of Economics and Management, University of Electronic Science and Technology of China, Chengdu, P.R.China, 610054 lian-song ZONG, Xihua University Academic Affairs Office, Chengdu, P.R.China, 610039 |
Abstract: |
Abstract: Risk identification is the foundation of an effective information system security risk management of organizations. The paper will apply SWOT analysis to the identification of the organization's information systems risk on the grounds of deductive and inductive methods. The study, from the perspective of organizational strategic, with application of Strategy Set Transformation(SST), put forward IRS model based on SWOT. Information system risk identification will be constructed based on the SWOT analysis. It facilitates the expansion of the level of risk identification, scope and depth. A really good job of information systems for risk identification is wished to be achieved, in hope of enhancing the organization's information systems risk management level.
|