Currently, the society is to digital evolution of information technology, digital technology has become the core foundation and driving force behind innovation and social development; and security belongs to the associated technology, the emergence of new technologies will inevitably continue to bring new security challenges and risks.
2019 The first digital risk Summit (DRS) was successfully held in Beijing on the occasion, we more deeply understand the tendency technological innovation and consumer demand change, it is changing every industry and affect the working methods and business models for the people. In this process, companies rely on digital technology will become increasingly strong, while the security challenges faced growing.
In this regard Beijing valley of the world's chairman, Chen Wei, dean of the valley of the view that digital is no longer a business tool icing on the cake, but has become a core business strategy, the digital transition has long been not an option but a necessity.
Accenture cited statistics show that the early acceptance of the digital transformation of enterprise productivity increased by 70%; in contrast, the follow-up to emulate the production rate increased by 30%. However, everything has two sides, digitized while giving people opportunities, but also inevitably bring about many new risks like never before.
In summary digitization process must be accompanied by new security process, "security procedures" is not just data security. Digital dependent on the platform, the platform's reliability and stability of the digital enterprise face various vulnerability and uncertainty, resulting in a digital risk, how to effectively control risk is the main problem now facing enterprises.
Affected by this, in the digital enterprise application environment, risk management departments (risk, internal control and audit) will be difficult to follow the traditional "go first regulatory norms, to build internal control system, the audit," the traditional method, the rapid development of technology rapid changes in the market will gradually enter the non-traditional risk management "rules" to follow the situation in the future to "encourage innovation" and "risk control" would be a contradiction, risk management departments will be facing a long-term It challenges.
President of Beijing National Accounting Institute Qin Rongsheng said: "Digital is a trend, digital technology has been widely used and the resulting social environment, fundamental changes in economic activity and living now in digital security, has become a national, and even the whole society. human problems. "
Past traditional security concept offensive and defensive as the main face of the new digital ecosystem, should jump attack and defense concept, a collaborative basis, to promote the governments, organizations, individuals linked together to improve protective measures, building a digital security system as a whole. Only a fundamental change from the concept of security, enhance safety awareness dimension, can truly safe for the driving force to build new eco digital security in the true sense.
"Digital risk has become a key risk affecting realization of the objectives, risks and digital compared to traditional risk has three main features: the first digital widespread risk in all aspects of the organization; the complexity of the risk of a second digital decision to deal with risks the higher the difficulty, the management of risk will involve knowledge and skills in various fields; third digital risk may be very short time to organize a heavy blow on the strategic and reputation, "China Institute of internal audit Deputy President and Secretary General Shen Liqiang.
For example, the digital age, "the construction of wind control system" has become the most important figures of the bank building, risk protection capability has become the primary measure of a commercial bank to finance scientific and technological innovation capacity.
China Construction Bank on risk prevention and control of major capacity-building highlight three parts, the first experience with security balance, taking into account the customer experience at the same time, prevention and control of risk; Secondly, the implementation of dynamic adjustment policies, adopt different security policies for different levels of management and control accounts; first Third, active defense measures, data leakage by external monitoring, risk communication channels, as well as acts of violence guess solution to proactively identify phishing sites and other means, to take the initiative to deal with the risks involved.
By means of the use of artificial intelligence and analysis of large data, China Construction Bank has succeeded in doing risk visible, clear risk management, risk control is maintained.
In addition, as government big data and security "sync" entered a new stage of development, big data technology is widely used in e-government, property rights protection data also becomes increasingly important. As long as there is not a complete description of the social and human transformation, the relationship between persons and things, there is the development direction of information security, in short, that "data and the World, application-cum-living, and Social Security."
In contrast, the International Information Systems Audit and Control Association ISACA Global CEO David Samuelson then hold such a view: In the digital age, companies need to adopt various methods to eliminate the risk, but that does not mean that companies should avoid all risk, because the risk It will also bring opportunities for businesses. Risk management should therefore, not eliminated.
Risk management is to help companies to accept risk, to help companies expand goals in the process to bring greater value to customers and stakeholders interests. I believe focusing on goals, the road to effective risk management will become more clear. Indeed, the "risk" of important connotation is to achieve control, because the risk is inevitable, but resources are limited, so to risk within the acceptable range.
With the digitization of the economy, improve the degree of social digital, digital risk will become the focus of attention of the whole society, only the reasonable control of the digital risk, in order to better develop the arrival of the digital economy and meet the digital world.
