本研究以品質管理的方法─品質機能展開(quality function deployment, QFD),針對校園環境中雲端運算的資訊安全進行分析,找出治理的關鍵因子,供單位決策者進行參考。
在研究的過程中,問卷設計依據CCM 3.0.1挑選評估項目,再依資訊安全專家建議整理及訂定出問卷。本問卷填答對象為全國大專校院資訊安全人員。
本研究探討雲端資訊安全治理的關鍵要素,經過研究分析結果,得出在五大構面下,有11項關鍵要素,總體來說IT基礎建設佔了四項,最為被大專院校受重視,其次為雲端資訊安全的管理佔三項,資訊治理佔了兩項,應用軟體/服務與人力資源各佔一項,綜合以上,針對11項關鍵要素提供對應之方法,提供台灣大專院校對雲端資訊安全治理,在管理面及學術面的參考。
On the process of the research, the questionnaire design, based on CCM 3.0.1, is to first identify the evaluation criteria, and then finalize the questionnaire by the analysis of the recommendations of the information security experts from higher education institu-tions nation-wide.
This study attempts to find out the key factors of the governance of cloud information security. After the analysis, 11 key factors among 5 aspects are concluded: IT infrastruc-ture, which is most valued by colleges and universities, accounts for 4 factors, cloud in-formation security management, accounted for three, comes in next, then is information governance, accounted for two, and the final two factors are application software and ser-vices and human resources. The research aims to provide a corresponding method to pro-vide guidance on the cloud information safety governance in management and academic perspectives for these 11 key factors in Taiwan’s colleges and universities.
