簡易檢索 / 詳目顯示
| 研究生: |
李素貞 Su-Chen Li |
|---|---|
| 論文名稱: |
資訊安全委外服務之建構策略探討 Construction Strategies for Providing Managed Security Services |
| 指導教授: |
吳宗成
Tzong-Chen Wu |
| 口試委員: |
葉瑞徽
Ruey Huei(Robert) Yeh 欒斌 Pin Luarn |
| 學位類別: |
碩士 Master |
| 系所名稱: |
管理學院 - 資訊管理系 Department of Information Management |
| 論文出版年: | 2007 |
| 畢業學年度: | 95 |
| 語文別: | 中文 |
| 論文頁數: | 68 |
| 中文關鍵詞: | 建構策略 、資訊安全服務 、服務營運商 |
| 外文關鍵詞: | Managed Security Service, Strategy, Service Provider |
| 相關次數: | 點閱:174 下載:9 |
| 分享至: |
| 查詢本校圖書館目錄 查詢臺灣博碩士論文知識加值系統 勘誤回報 |
隨著全球安全事件的層出不窮與資訊化深度的與日俱增,企業在面臨多變詭譎的網路環境,除了希望能建立資訊系統的穩定度,以維持持續性商業化營運外;同時也希望能兼顧投資成本的效益,因此資訊安全委外服務的模式逐漸興起。
專業素養、技術能量、穩定機密、流程標準化與客戶的信賴是資訊安全委外服務的必要條件;在營運模式上則為 one-to-many的服務架構,除了是以收取服務費為營收的基礎外,且服務要達到規模經濟,才能做到永續經營。本研究進行資訊安全委外服務建構策略是以客戶價值的理論為基礎:第一步先以需求面與供給面的角度去訂定目標市場的選擇(Profitable),接著再配合價值供給的思維,以完整的技術平台(Product)、嚴謹的作業流程(Process)與專業的維運組織(People)去發展服務價值的建立與核心競爭力,最後以競爭門檻(Product)、價格策略(Price)、市場行銷(Promotion)與銷售通路(Place),輔以個案分析,探討整個建構策略對資訊安全委外服務的影響,進而確立資訊安全委外服務的建構策略。
希望藉由本研究的探討,能同時提供服務營運商建構策略上的參考與企業在制定資安服務委外時,選擇服務廠商的評估要件。唯有資訊安全委外服務建構上的成功,才會促使資訊安全服務產業的成長,達到永續經營的目的;同時也有助於服務委外之企業資訊環境的防禦能力。
Nowadays the events concerning global security are emerging one after another and the information technology is being further developed day after day. When facing the ever changing and unpredictable network environment, enterprises wish to establish a stable information system to keep the business operating ; at the same time they wish the benefit of the investment cost can also be taken into account. Therefore, the service of the information security is being out-sourced gradually.
For managed security services, the expertise, intensive technology, stable confidentiality, standardization of procedures and the trust from customers are the key factor to success. The one-to-many is its service model and the service charge is the foundation of the revenue income. In order to have a long-term operation, the service has to achieve a certain scale. This research, the construction strategies of managed security services, is taking the theory of the customer value as the foundation. First, demand and supply determine the choice of target market (Profitable). Then service value and core competition are developed by cooperating value supply way of thinking, complete technology platform (Product), cautious operating procedures (Process), and expertise operating organization (People). Then we will go through threshold of competition (Product), price strategy (Price), marketing (Promotion), sales network (Place), together with case studies, to discuss how construction strategy would affect on the managed security services. At last, the construction strategy of managed security services can be established.
The objective of this thesis is to offer service providers with the construction strategy; at the same time, provide enterprises with the key elements for evaluation when they will seek out-sourcing service providers. The success of the managed security services is the only way to keep the business of information security service growing and to achieve the goal of information security service and continuous business operation, meanwhile, to reinforce the defense ability of the enterprises in information environment.
[1] 周怡岑,「資安管理導入策略-以電子零件通路商為例」,台灣科技大學,資訊管理系碩士論文,中華民國九十五年一月。
[2] 詹育嘉,「資訊安全委外影響因素之研究」,中正大學,資訊管理研究所碩士論文,中華民國九十四年七月。
[3] 翁文笛,「資訊安全廣告之整體趨勢變化與廣告表現探討」,中山大學,傳播管理研究所論文,中華民國九十三年十月。
[4] 洪肇蔚,「資訊安全建置最適化投資策略之研究」,成功大學,交通管理科學研究所碩士論文,中華民國九十三年六月。
[5] 徐鈺宗,「資訊安全服務業-長青國際-創業個案研究」,中山大學,資訊管理學系研究所碩士論文,中華民國九十二年。
[6] 陳耀良,「ASP營運策略之研究」,台灣大學,資訊管理學研究所碩士論文,中華民國九十五年。
[7] 朱浤源主編,中華科際整合研究會合編,撰寫博碩士論文實戰手冊,正中書局,中華民國九十四年四月。
[8] 葉至誠,葉立誠,研究方法與論文寫作第二版,商鼎文化出版社,中華民國九十四年三月。
[9] 李伯謙、周善謙譯,元智大學企管系 李伯謙教授審訂,Philip Kotler 原著,行銷管理概論第二版,中華民國九十三年九月。
[10] 李盈德,「如何評選資安委外服務商」,資安人科技網,中華民國九十二年十一月十四日。
[11] 何佩琪,「資安委外,你準備好了嗎?-資安委外的範圍與內容」,資安人科技網,中華民國九十三年三月三十日。
[12] 「全球網路安全威脅研究報告第十一期」,賽門鐵克,中華民國九十六年。
[13] 張家維,「全球資訊服務市場趨勢」,MIC,April 2006。
[14] 王義智,「美國資訊安全市場趨勢與商機」,MIC,June 2006。
[15] 洪聖敏、張家維,「美國資訊委外服務市場發展趨勢」,MIC,July 2006。
[16] 何心宇,「全球資訊安全市場發展現況與趨勢」,MIC,Feb 2006。
[17] 王義智,「2006-2009 年台灣資訊安全市場規模分析」,MIC,April 2007。
[18] Richard T. M., Lorrie S., Allie Y., Robert H.B., Ted C., Adam W.C., Claudio D.R., Cecile D., Eric G., Arabella H., Frances K., Kelly M. K., Jim L., Ian M., William M., David N., Kurt P., “Hype Cycle for IT Outsourcing, 2006”, Gartner Research, July 2006.
[19] Ovum,“Ovum’s Outsourcing taxomony”,Ovum Outsourcing Practice, 16 February 2007.
[20] Graham Titterington, “Symantec(Vendor Analysis)22 August 2006”, Ovum, 2006.
[21] Frost & Sullivan, “World Managed Security Services Markets F104-74”, Frost Research, 2004.
[22] Thomas Raschke, Bill Nagel, “Symantec's Acquisition Strategy
Today Security, Tomorrow”, Forrester Research, May 30, 2006.
[23] Mark N., Carolyn D.,Kelly M.K., Greg Y., Donna S., John R., Ronni J.C., John G., Peter F., “Vendor Rating: Symantec”, Gartner Research, 30 Nov 2005.
[24] Kelly M. Kavanagh, “A Dozen Questions That Prospective Buyers of Managed Security Services Should Ask”, Gartner Research, 30 May 2006.
[25] Philip Kotler, Kevin Lane Keller, A Framework For Marketing Management third Edition, Pearson, 2007.
全文公開日期 2012/07/19 (校內網路)全文公開日期 本全文未授權公開 (校外網路)
全文公開日期 本全文未授權公開 (國家圖書館:臺灣博碩士論文系統)