| Summary: | 碩士 === 國防大學管理學院 === 資訊管理學系 === 99 === This paper discusses the information management system when the import of military organizations in the information on the effectiveness of safety management, and understanding of ISO 27001 into a military organization on the influence exerted.
This study is the adoption of ISO 27001 certification for the Department of Defense conducted a questionnaire survey of a unit. Construction of Analytic Hierarchy Process to ISO 27001 in the military organization of the key factors of index weight. Finally, research into: 1. ISO27001 for import to a certain extent, there must be consensus, when the targeted organization, the organization that all staff have the same goals and vision to work together. 2. The second key factor in the top three layers for the "user", "Information security incident management" and "sector factors." 3. The third key factor in the top three layers of " collection of evidence ", "User password management" and "network controls." Therefore, the results of this study then can be used as a reference when importing ISO27001.
This study is the adoption of ISO 27001 certification for the Department of Defense conducted a questionnaire survey of a unit. Overall, import 27001 to improve the effectiveness of the post-well, of which the "information security policy document" and "system files security" to improve the effectiveness of the two better; choose not to agree to a high of "your organization to reduce IT security issues per year caused by the costs ", but also to improve the effectiveness of 52.8%. Therefore, we believe that the observed organization has gained a universal improvement after the introduction of ISO27001.
|
|---|
