企業(yè)管理信息系統(tǒng)的數(shù)據(jù)安全治理能力成熟度模型研究

打開文本圖片集

Maturity Model of Data Security Governance Capability for Enterprise Management Information System

LINJie JIANGTianhan

（School of Economics and Management，Tongji University， Shanghai 2Ooo92，China）

Abstract： As enterprise digital transformation accelerates and information technology continues to advance rapidly，management information systems （MIS）-the primary carriers of enterprise data-play an increasingly critical role in ensuring overall data security. Consequently， objectively assessng the maturity of data security governance capabilities within these systems has become a pressing concern. Grounded in the lifecycle of MIS， this study proposes a maturity assessment framework encompassing five evaluation dimensions and corresponding core indicators.A fuzzy comprehensive evaluation method is then employed to guide the assessment process and construct a five-level maturity model， ranging from the Chaotic Level to the Optimized Level. Finally， a case study involving Company J's charging operation management information system is presented to evaluate its data security governance capability，thereby validating the feasibility of the proposed model.

Key words： management information systems； data security governance； capability maturity； capability assessment

0 引言

全問題日益突出，數(shù)據(jù)泄露、黑客攻擊政企網(wǎng)絡(luò)等現(xiàn)象屢見不鮮，對我國企業(yè)的良序發(fā)展造成了嚴(yán)重沖擊，數(shù)據(jù)安全已經(jīng)成為人們重點關(guān)注的領(lǐng)域之伴隨企業(yè)數(shù)字化轉(zhuǎn)型的不斷深入，企業(yè)數(shù)據(jù)安一。（剩余14063字）