The Research On The Information Security Risk Management Of People’s Bank Of China

With the development of the people’s Bank informationization construction, majorsof business systems are being to run, gradually enter into completely informationized andcentralized processing stages. Now the information security has become the importantwork on which the people’s Bank of China needs to focus. Since the information systemof the people’s Bank of China is lying in a new developing stage at present,, the securitysituation is more and more serious. so it is practically significant and highly effective fora given period of time to research on the bank’s information security risk management.Through combining risk management and information security theory, this paper notonly brings the risk management theory into the information security works of thePeople’s Bank of China, but also introduces the problems exist at present and everystages of information security jobs of the People’s Bank of China from the perspective ofrisk management, and it systematically analyses the People’s Bank’s current situation ininformation security management. Then with the help of the case of the People’s BankRisk self-assessment,we make a depth analysis of the threats and existing vulnerabilitiesof the network and information system of the People’s Bank, and assess the asset’s riskfactors and find the weak and security risks, and propose measures to prevent and reducethe risk. On this basis, this paper deems that the People’s Bank have made greatachievements in information security. However, with the information system growingmore and more importance, the People’s Bank still needs to carry out improvements tomeet the constantly changing external environment. Therefore, based on the theoreticalanalysis and case description, and through combining personal experience, from the staff,internal control system, information security management team and audit of informationcommunication system, this paper makes some proposals for information securitymanagement of the People’s Bank, and hope that it could help to improve the people’sbank’s reliability of the information system.