Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City
碩士 === 大葉大學 === 資訊管理學系碩士班 === 105 === Due to ever-changing evolutions of information technology, lots of data need to rely on cloud computing. Both of the institutions of government and enterprises have to require information systems to maintain the organizational operations through cloud computing...
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Others |
| Language: | zh-TW |
| Published: |
2017
|
| Online Access: | http://ndltd.ncl.edu.tw/handle/4sj2ef |
| id |
ndltd-TW-105DYU00396012 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-TW-105DYU003960122019-05-15T23:17:37Z http://ndltd.ncl.edu.tw/handle/4sj2ef Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City 基於ISO 27001之雲端校園資訊系統安全稽核管理研究-以新竹市某國中學務系統為例 HUANG,CHING-WEN 黃靖雯 碩士 大葉大學 資訊管理學系碩士班 105 Due to ever-changing evolutions of information technology, lots of data need to rely on cloud computing. Both of the institutions of government and enterprises have to require information systems to maintain the organizational operations through cloud computing. And there is no exception to campus information systems. For example, the scores and personal data of students must be uploaded to the campus systems with serious protection. This is the reason why the security auditing management for cloud campus information systems is very important. This study is based on ISO 27001 information security management standard and Plan-Do-Check-Act Model to design interview questions and adopt the method of case study. Through the in-depth interview, we have inspected the network crisis management of cloud campus information systems in some junior high school in Hsinchu City. Based on the findings in this research, they have following contributions. One, few human resources are for securing the cloud campus information system. Second, employees have poor knowledges and lacking in responsibility. Third, few resources to support security are from the government. Finally, it must emphasis the iterations on the method of Plan-Do-Check-Act for the security of cloud campus information systems. Therefore, this study proposes five suggestions in the following. (1) More educated employees to implement the security of cloud campus information systems. (2) To setup the awards to encourage the study on securing information system. (3) Different responsibility to consider the different users’ behaviors. (4) Request more resources from the government to improve the status. (5) Through the iterations on Plan-Do-Check-Act model to implement the security of cloud campus information systems. We hope the research results are also useful for other junior high schools in the future. TSAUR WOEI-JIUNN HUNG,CHUN-NAN 曹偉駿 洪春男 2017 學位論文 ; thesis 102 zh-TW |
| collection |
NDLTD |
| language |
zh-TW |
| format |
Others
|
| sources |
NDLTD |
| description |
碩士 === 大葉大學 === 資訊管理學系碩士班 === 105 === Due to ever-changing evolutions of information technology, lots of data need to rely on cloud computing. Both of the institutions of government and enterprises have to require information systems to maintain the organizational operations through cloud computing. And there is no exception to campus information systems. For example, the scores and personal data of students must be uploaded to the campus systems with serious protection. This is the reason why the security auditing management for cloud campus information systems is very important.
This study is based on ISO 27001 information security management standard and Plan-Do-Check-Act Model to design interview questions and adopt the method of case study. Through the in-depth interview, we have inspected the network crisis management of cloud campus information systems in some junior high school in Hsinchu City. Based on the findings in this research, they have following contributions. One, few human resources are for securing the cloud campus information system. Second, employees have poor knowledges and lacking in responsibility. Third, few resources to support security are from the government. Finally, it must emphasis the iterations on the method of Plan-Do-Check-Act for the security of cloud campus information systems. Therefore, this study proposes five suggestions in the following.
(1) More educated employees to implement the security of cloud campus information systems. (2) To setup the awards to encourage the study on securing information system. (3) Different responsibility to consider the different users’ behaviors. (4) Request more resources from the government to improve the status. (5) Through the iterations on Plan-Do-Check-Act model to implement the security of cloud campus information systems. We hope the research results are also useful for other junior high schools in the future.
|
| author2 |
TSAUR WOEI-JIUNN |
| author_facet |
TSAUR WOEI-JIUNN HUANG,CHING-WEN 黃靖雯 |
| author |
HUANG,CHING-WEN 黃靖雯 |
| spellingShingle |
HUANG,CHING-WEN 黃靖雯 Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| author_sort |
HUANG,CHING-WEN |
| title |
Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| title_short |
Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| title_full |
Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| title_fullStr |
Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| title_full_unstemmed |
Security Auditing Management for Cloud Campus Information Systems Using ISO 27001-A Case Study on School Affairs Information Systems of Some Junior High School in Hsinchu City |
| title_sort |
security auditing management for cloud campus information systems using iso 27001-a case study on school affairs information systems of some junior high school in hsinchu city |
| publishDate |
2017 |
| url |
http://ndltd.ncl.edu.tw/handle/4sj2ef |
| work_keys_str_mv |
AT huangchingwen securityauditingmanagementforcloudcampusinformationsystemsusingiso27001acasestudyonschoolaffairsinformationsystemsofsomejuniorhighschoolinhsinchucity AT huángjìngwén securityauditingmanagementforcloudcampusinformationsystemsusingiso27001acasestudyonschoolaffairsinformationsystemsofsomejuniorhighschoolinhsinchucity AT huangchingwen jīyúiso27001zhīyúnduānxiàoyuánzīxùnxìtǒngānquánjīhéguǎnlǐyánjiūyǐxīnzhúshìmǒuguózhōngxuéwùxìtǒngwèilì AT huángjìngwén jīyúiso27001zhīyúnduānxiàoyuánzīxùnxìtǒngānquánjīhéguǎnlǐyánjiūyǐxīnzhúshìmǒuguózhōngxuéwùxìtǒngwèilì |
| _version_ |
1719144930017804288 |