摘要
大数据网络化快速发展的今天,档案信息化安全管理所面临的风险更加复杂和严峻。迫切需要按照档案信息化全生命周期分阶段深入细致讨论其面临的风险并制定风险管理策略。为了确保档案信息的真实性、完整性、可靠性、可用性、可读性、保密性,实现档案信息化建设安全管理目标,应用核对表法、流程图法、目标偏离法,三种方法相结合的风险识别方法,对档案信息化生命周期的四个阶段的风险加以识别、分析,找出关键风险因素。档案信息化安全管理风险因素主要为人为(含制度)因素、管理因素、技术因素三方面。从四个阶段的三方面风险因素入手分析,综合构建风险策略框架,既兼顾共性风险,又各有侧重。风险策略由以下四个方面组成:理顺档案管理方和第三方权责关系,明确二者既是合作又是监督与被监督关系的管理策略;应用区块链技术解决档案信息化管理安全性的技术策略;强化监督管理使管理形成闭环的制度策略;探讨档案管理者职业敬畏心和过硬技能的人才策略。以上为档案信息化安全管理工作提供可行的参考。
The risk of the management of archive informatization becomes more complex and severe due to the rapid development of networking of big data.It is necessary to discuss the details of the facing risk and draft the strategy of risk management based on the life cycle of archive informatization.To make sure the truth,integration,reliability,usage,readability and confidentiality of archive information and realize the goal of safe management of archive informatization,three combined methods including checklist,flowchart and target deviation are applied and then key risk factors for the risk of the four different stages in archive informatization will be recognized,analyzed and found.The key risk factors of the management of archive informatization mainly include artificial(including system)factor,management factor and technology factor.According to the three main risk factors of four stages of life cycle of archive informatization,outline of the risk strategy will be analyzed and completely set up.This strategy takes risk of commonality of four stages into account and four stages also have its own special meaning.Strategy of management,technology strategy,system and talented are involved in the risk strategy.Management strategy is understanding the relationship of power and responsibility between archive management and third party and clearing both collaboration and supervising and being supervised.Technology strategy is applying the blockchain to solve the safety of management of archive informatization.System strategy is strengthening supervision and management to form a closed loop of management.Talented strategy is exploring the professional awe and excellent technology of archive manager.In a summary,all mentioned above could provide the feasible reference for the safe management of archive informatization.
作者
刘莎
LIU Sha(Jinzhong teachers college,Jinzhong 030606)
出处
《山西档案》
2020年第1期94-103,共10页
Shanxi Archives
关键词
档案管理
档案信息化
风险识别
风险分析
风险策略
archive management
archive informatization
risk recognition
risk analysis
risk strategy
作者简介
刘莎(1986-),女,汉族,山西人,晋中师范高等专科学校馆员,研究方向:档案管理。
