上海管理科学2025,Vol.47Issue(2):32-42,11.
企业管理信息系统的数据安全治理能力成熟度模型研究
Maturity Model of Data Security Governance Capability for Enterprise Management Information System
摘要
Abstract
As enterprise digital transformation accelerates and information technology continues to ad-vance rapidly,management information systems(MIS)-the primary carriers of enterprise data-play an increasingly critical role in ensuring overall data security.Consequently,objectively assessing the ma-turity of data security governance capabilities within these systems has become a pressing concern.Grounded in the lifecycle of MIS,this study proposes a maturity assessment framework encompassing five evaluation dimensions and corresponding core indicators.A fuzzy comprehensive evaluation method is then employed to guide the assessment process and construct a five-level maturity model,ranging from the Chaotic Level to the Optimized Level.Finally,a case study involving Company J's charging operation management information system is presented to evaluate its data security gover-nance capability,thereby validating the feasibility of the proposed model.关键词
管理信息系统/数据安全治理/能力成熟度/能力评估Key words
management information systems/data security governance/capability maturity/capa-bility assessment引用本文复制引用
林杰,姜天晗..企业管理信息系统的数据安全治理能力成熟度模型研究[J].上海管理科学,2025,47(2):32-42,11.基金项目
国家社科重点项目"企业数据安全治理的关键机制研究"(22AZD136) (22AZD136)
上海市科技创新行动计划"上海企业信息系统数据安全审计研究"(23692112800). (23692112800)
