摘要
为了提升运营效率,满足企业精细化管理和精细化营销销售的需求,国内大中型企业纷纷在信息化建设方面加大投资,建设了客户管理系统、ERP系统等运营支撑系统,同时企业的发展也越来越依赖于信息系统的支撑能力和安全程度。另一方面,企业的运营由于信息系统的管理不善存在着一定的安全风险,而如何更有效的管理信息资产,提高信息化投资受益,更是信息化建设的重要问题。因此,加强信息化管理,向管理要效益,成为信息化建设下一阶段需要重点加强的工作。
发达工业化国家在推进信息化的过程中,积累了丰富的实践同时也创建了相关的标准和最佳实践,如ITIL、Cobit等。国内部分企业通过借鉴国外的科学管理方法不同程度的提升了管理水平。信息化管理是企业管理不可分割的组成部分,盲目的照搬国内的经验,没有消化和吸收,将难以保证这些标准和实践持续发挥作用。如何建立并实施适合企业信息化发展特征的信息化管理控制体系,成为中国企业信息化管理实践和研究的重要课题。本文采用理论分析和案例分析相结合的方法,以河北网通信息化管理控制体系的建立和实施为重点,对该问题进行了研究。
论文首先对河北网通的信息化管理现状和实施条件进行了分析,借鉴并综合运用相关国际标准和最佳实践的基础上,在征求各方信息化专家的意见,建立了河北网通的企业信息化管理体系。该体系以组织架构和岗位为基础,以管控流程为主线,以围绕成熟度的考核为导向,以技术为支撑,形成组织机构、管控流程、考核和系统工具组成的有机体,该体系以信息化能力和安全为核心,通过全面识别信息化管理的各个环节,以科学的方法论为指导,持续改进信息化管理水平。其次,深入分析了河北网通企业信息化管理存在的问题,以信息化服务管理、信息化预算和投资管理作为突破口,从组织、流程、考核和系统工具四个方面的实施过程、分析问题和解决问题过程进行了研讨,提出了实施过程建议和解决问题的办法。最后提出了从深度和广度两方面说明了企业信息化管理控制体系的实施路线,为同类企业体系实施提供参考。
In order to promote the operation efficiency, meet the demand of enterprise fine refinement management and marketing, the domestic Large and middle scale Enterprises increase the investment in the informationization construction aspect, has constructed operation support systems, Custom management system, ERP system ,and so on. Meanwhile enterprise's development also more and more relies on information system's support ability and the security, and enterprise operation also has certain security risk because of ill management. Enhancement of the informationization management and Obtainment the benefit from the management, becomes the work in next stage which the informationization construction needs with emphasis.
In the informationization advancement the developed industrialized country accumulated the rich Experience and founded some standards and the best practice about Informationatization Management Control System, as ITIL, Cobit and so on. The domestic enterprises promoted the management level through overseas scientific management method. But the informationization management is Inalienable with enterprise management as a part of it. It will be difficult to guarantee that these standards and the best practice play the role continually without digestion and absorption of it.
This article uses the method of union with the theoretical analysis and the case analysis. First the enterprise Informationization Management System of Hebei Netcom was founded through the analysis of the present situation and the implementation condition in Hebei Netcom, in foundation of profits from the related international standard and the best practice and absorption of informationization expert opinion, This system takes the organization as foundation, take controls workflow as the master line, take the maturity as the achievements inspection guidance, take the technology as the support, and forms the organism which includes oganization, the control flow, the achievements inspection and the system tool.The article Systematically elaborates that we take informationization ability and security as the core, thoroughly recognize each process of informationization management, take the Scientific methodology as the instruction, improved the informationization management level continually. Then the article analyzed that the question existed in the enterprise informationization management,and Hebei netcom selected the informationization service management, the informationization budget and the investment management as the breach,and how to implement the system,analysis and solve the question in the four aspects of organization, the flow, the inspection and the system tool.Finally the article finally proposed the implement the enterprise informationization management control system in two aspects of depth and the breadth, and provides the reference model for the similar enterprise.
Finally this article has expounded that the construction of Informationization Management Control System needs the apply thery to reality and improvement system's construction continually in the implementation process.
引文
[1]曹汉平、王强、贾素玲著,《现代IT服务管理——基于ITIL的最佳实践》,清华大学出版社,2005年6月
[2]中国惠普有限公司,《惠普之道:IT服务管理篇》,清华大学出版社,2006年1月
[3]章斌,《基于ITIL的IT服务管理基础篇》,清华大学出版社,2007年8月
[4]朱海林、方乐、梁晟著,《IT服务:管理、控制与流程》,机械工业出版社,2006年8月
[5]薛岩、欧立雄,《PRINCE2:成功的项目管理》,机械工业出版社,2005年
[6]杨一平等《软件能力成熟度模型CMM方法及其应用》,人民邮电出版社,2002年9月
[7]张维明主编,《信息系统建模》,电子工业出版社,2002年3月
[8]万江平,杨建梅等,《软件过程改进的复杂性工作程序研究——SW-CMM实施的方法论》,科学出版社
[9]郝晓玲,孙强著,《信息化绩效评价:框架、实施与案例分析》,清华大学出版社
[10](英)乔丹,(英)赛尔库克著,汤大马译,《lT风险 基于IT治理的风险管理之道》,清华大学出版社
[11](南非)布鲁克斯(Brooks,P.)著;丰祖军译,《IT服务管理指标》,清华大学出版社
[12](英)艾特肯(Aitken,I.)著,陈文广 译,《价值驱动的IT管理:IT部门的商业化》,清华大学出版社
[13]李德芳,编著,《企业信息化组织与管理》,化学工业出版社
[14](荷)布勒姆,(荷)范多恩,(荷)米托米著,程治刚,张翎,张劲译,《SOX 环璋下的IT治理》
[15]杨建华,张群,杨新泉编著,《企业资源规划与流程再造》,北方交通大学出版社
[16]左美云、邝孔武主编,《信息系统开发与管理教程》,清华大学出版社
[17]陈龙等编著《电信运营支撑系统——现代通信网络技术丛书》,人民邮电出版社
[18]胡克瑾等编著,《IT审计(第二版)》,电子工业出版社
[19](南非)本永,(英国)约翰斯顿著,刘向辉 译《服务协议管理导论》,清华大学出版社
[20]孙强 陈伟 王东红著,《信息安全管理:全球最佳实务与实施指南》,清华大学出版社
[21]Jan Van Bon,《IT Governance based on Cobit,a pocket guide》
[22]Jan Van gon,《基下ISO 27001和ISO 17799的信息安全指导》,清华大学出版社2002.7