Company A’s Information Security System Evaluation Based On Fuzzy Comprehensive Evaluation

As information technology advances in the 21 st century,security of information has evolved from straightforward and secure to intricate and hazardous.Enterprises are confronted with the difficulty of intricate and fluctuating business information theft and anti-theft,and the issue of network information security is becoming increasingly prominent.The pressing issue of how to further implement the enterprise information security system protection strategy,protect data from malicious theft or destruction,and sustain the network environment’s healthy development is a pressing one.Employing a fuzzy comprehensive evaluation method based on research into pertinent literature of information security assessment both domestically and internationally,this thesis examines the information security system of company A as its research object.To begin,the current state of company A’s information security was examined.system and then invited the management personnel and technical backbones related to the company’s information security to score the indicators at all levels,and then use the AHP and fuzzy evaluation methods to determine the weight and Score.At long last,Company A’s information security system’s existing issues were scrutinized through the evaluation outcomes and proposed for optimization and enhancement of the corresponding predicaments.The comprehensive score of Company A suggests that their information security construction level is within a broad range,yet there is still potential for improvement in some of the more critical indicators.Company A’s information security system,in its entirety,has the following issues: a disordered organizational and managerial structure,inadequate implementation of security regulations,a certain security technology base,yet an inadequate coordination of the information security management system.focus on operation and maintenance Details,lack of long-term planning;focus on hardware equipment investment,lack of professional information technology personnel.This thesis proposes several improvements from both management and technical perspectives in response to the issues identified,such as refining the safety organization structure,refining the system specification,and introducing more advanced and effective software and hardware technical assistance.Beginning from the actual circumstances,this dissertation takes full advantage of AHP and fuzzy evaluation to assess the information security of small and medium-sized businesses.It has a noteworthy impact on the utilization of the technique and furnishes a reference for future studies on information security evaluation.Moreover,it contributes to the enhancement of the security of other small and medium-sized businesses.