The Research on the Education and Training Evaluation of Information Security Management standard—A case of the BS7799 of Certified-government organizations in Taiwan

• Main Authors: LEE, PO-YI, 李柏毅
• Other Authors: Wong, Seng-Lee
• Format: Others
• Language: zh-TW
• Published: 2006
• Online Access: http://ndltd.ncl.edu.tw/handle/01623259353237753859

碩士 === 國立臺北大學 === 公共行政暨政策學系 === 94 === With information technology advanced and internet developed,make our life become more and more comfortable. But at the time we enjoy convenience, the crisis is omnipresent. By staffs to cause the information security ,we surveyed some cases of information security in 2003, such as the Lee and Li Attorneys-at-Law, hosted by Mr. Chen Chang-Wen, has been usurped three billions NT dollars by its employee; illegal usages of the Easycard by 127 employees occurred in Taipei Rapid Transit Corporation; two officials of Taipei National Tax Administration, Ministry of Finance, defrauded the refund of tax…etc. To compare with an investigative report of computer crime and secret protection from CSI/FBI of U.S. in 2003, we find out the reason why happenings of information security emerge in an endless stream because of improper embezzlement of the internal staffs of organization. Though NIST 800-12 of America、Guideline for the Security of Information Systems and Networks of OECD、BS7799 of England and Evaluation of Training and Education of Kirkpatrick, the research method depended on the interview of the case of experts. By understanding these states of adopting the BS7799 of Certified-government organizations in Taiwan. This study try to address appropriate advises in order to promote the case of information security education and training to reach Confidentiality、Integrity and Availability.