| Summary: | 碩士 === 國立中央大學 === 資訊管理學系碩士在職專班 === 97 === Based on "The Norms of Information and Communication Security Management in Educational Systems", this study was conducted by mailing questionnaires to survey the current situation of implementing information and communication security management in senior high and vocational high schools. In addition to indirectly facilitating the request of "The Norms of Information and Communication Security Management in Educational Systems" by Department of Education, prompting surveyed senior high and vocational high schools review itself with the questionnaires of this study, making statistics for the level of implementing information and communication security management in every aspect, inferring the cause of sufficient or insufficient implementation, comparing the inappropriate control measures to senior high and vocational high schools listed in "The Norms of Information and Communication Security Management in Educational Systems" with the study results, this study expects to provide a reference to our government and Department of Education for promoting the information security of senior high and vocational high schools.
This study discovered that northern senior high and vocational high schools don''t have too much problems in establishing information and communication security policies; however, they don''t implement information security measures sufficiently. The motivation of implementing information security management is largely out of passive factors (for complying the rules and regulations of Department of Education). Furthermore, the human resources in the departments of information management of every school varies and don''t increase or decrease according to the number of teachers and students. Although information security events happen in almost every school, there are nearly half of schools don''t set departments of information security to deal with them. The major obstacle to promoting information security is "human," including that professional human resources are insufficient, users or other units of schools don''t want to comply the measures of information security, and the upper management of schools doesn''t lay great emphasize on information security. "The Norms of Information and Communication Security Management in Educational Systems" was established by Department of Education, which is partly inappropriate to and doesn''t meet the expectation of senior high and vocational high schools.
|
|---|
