==>> 点击下载文档 |
江西 RC 银行作为全省网点最多、业务规模最大、客户资源最广的地方银行机
构,信息科技风险管理决定其业务发展的延续性。风险管理缺失可能引发金融风
险,造成区域范围内的经济震荡,波及民生稳定,银行多年积累的信誉将毁于一
旦。所以,研究银行信息科技风险管理,有重要的现实意义
本文借鉴业内发展历史和运行现状,充分研究了银行业风险管理的概念和论
点,全面概况了信息科技风险的理念、文化、制度和策略。以江西区域经济特点
为基础,分析了金融行业发展态势,深入了解江西 RC 银行信息科技风险管理面临
的契机和机遇,探索了现行信息科技运行模式,提出了解决方案。文章全面概述
了信息科技风险管理的全面特征,充分调研了江西 RC 银行现行的管理实践,分析
组织架构、研发体系、运维模式、科技审计的特征,提出信息安全管理策略、业
务连续性措施、研发体系建设、人力资源保障、基础设施建设方面的风险应对措
施,得出构建信息科技风险管理的组织架构体系建设、防御体系建设和制度体系
建设的构想,从而有效达成江西 RC 银行有效落实风险防范的目标
论文借鉴国际通行信息科技风险标准,以国内监管部门指引文件为指导,通
过审计识别问题,提出应对策略,构建覆盖组织体系、防范体系和制度体系的保
障体系架构。以建设信息科技风险管理体系为最终目标,分析现状,提出有效风
险控制措施,规划了今后风险保障体系架构建设的方案。本文的研究方法、理念
和措施具有普遍适用性。文中所构建体系架构和保障建设是以监管部门的指引条
款、国内外先进银行的管理实践作为依据,能够成为江西 RC 银行提升信息科技管
理水平、完善信息科技风险防范架构、建立业务连续性体系的研究思路和方法
关键词:商业银行;信息科技;风险管理2
Abstract
With the rapid development of information technology, the rapid development of
commercial banking. It is necessary for the bank to gain the competitive advantage in
the application of the information technology, and the core of the competition in the
industry is the integration of the scale of the information technology and the information
technology. Information technology to support commercial banks to enhance the core
values and business innovation at the same time, gradually exposed the potential of
information technology security risks. The lack of risk management of information
technology will directly affect the business continuity of commercial banks, and hinder
the sustainable development of the banking business. Bank information technology risk
caused by interruption of business, the risk of an event in recent years are frequently
reported in the newspapers, resulting in a very bad social influence, serious damage to
the commercial bank39;s credit, resulting in huge economic losses. Information
technology risk management of commercial bank bad is prevalent in the industry
security risks, risk management is becoming more and more serious, seriously
restricting the pace of commercial banks to carry out business innovation and hindered
the rapid occupation of the market, and even affect the basic business bank to survive.
So research information technology risk status. Analysis commercial bank information
technology risk causes, proposed risk response strategy and constructing information
technology risk management guarantee system, guarantee continuous and efficient
operation of the information system, the effective implementation of the various
measures is to safeguard the bank based business, quality and efficiency of the catalyst.
Jiangxi RC bank as the province39;s largest network, the largest business, customer
resources, the most extensive local banking institutions, information technology risk
management determines the continuity of its business development. Lack of risk
management may lead to financial risks, cause regional economic shock, affecting
people39;s livelihood and stable, bank for many years of accumulated reputation will be
destroyed. Therefore, the study of bank information technology risk management, has
important practical significance.
Based on the history and current situation of the industry, this paper studies the
concept and the argument of the risk management in the banking industry, and
comprehensively summarizes the concept, culture, system and strategy of information
technology risk. In Jiangxi regional economic characteristics as the basis, analyzes the3
development trend of financial industry, in-depth understanding of Jiangxi RC bank
information technology risk management is facing opportunities and opportunities,
explore the current mode of information technology and put forward the solution. The
comprehensive overview of the information technology risk management of the overall
characteristics and full investigation of the RC Bank of Jiangxi current management
practice and analysis features of organizational structure, system, research and
development, mode of operation and maintenance, technical audit, information security
management strategy, measures, research and development system building, human
resources and social security, infrastructure construction aspects of business continuity
measures to cope with the risks that to construct the information technology risk
management organization system construction, defense system construction and the
system construction, so as to effectively reach Jiangxi RC bank effective
implementation of risk prevention goals.
With the help of the international standard of information technology risk, to
domestic regulatory guidance documents as a guide, by identifying auditing problem
proposed coping strategies, building covering the organization system and prevention
system and the system39;s security architecture. With the construction of information
technology risk management system as the ultimate goal, analysis of the status quo, put
forward effective risk control measures, planning the construction of the future risk
protection system. The research methods, ideas and measures of this paper have
universal applicability. In this paper the construction of architecture and security
building is to the management practice of regulatory authorities of the terms of the
guidelines, the domestic and foreign advanced banks as the basis, to become Jiangxi RC
bank to enhance the information technology management level, improve the
information technology risk prevention structure, established the research ideas and
methods of business continuity system.
Key words: Commercial bank; information technology; risk management第 1 章 导论第 1 章 导论
1.1 研究背景和意义
信息科技已经成为商业银行发展的重要依赖手段。无论是作为业务发展、行
业竞争的基本手段,或者是满足互联网金融挑战、提高核心竞争力的需求。商业
银行充分应用信息技术手段,拓展了银行业务系统的功能性和普遍性。信息科技
广泛应用于电子银行
。。。。。。以上简介无排版格式,详细内容请下载查看