Skip navigation

DSpace

機構典藏 DSpace 系統致力於保存各式數位資料(如:文字、圖片、PDF)並使其易於取用。

點此認識 DSpace
DSpace logo
English
中文
  • 瀏覽論文
    • 校院系所
    • 出版年
    • 作者
    • 標題
    • 關鍵字
    • 指導教授
  • 搜尋 TDR
  • 授權 Q&A
    • 我的頁面
    • 接受 E-mail 通知
    • 編輯個人資料
  1. NTU Theses and Dissertations Repository
  2. 管理學院
  3. 商學研究所
請用此 Handle URI 來引用此文件: http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/87886
完整後設資料紀錄
DC 欄位值語言
dc.contributor.advisor劉 念琪zh_TW
dc.contributor.advisorNien-chi Liuen
dc.contributor.author岸本 彩紀zh_TW
dc.contributor.authorSaki Kishimotoen
dc.date.accessioned2023-07-31T16:07:35Z-
dc.date.available2023-11-09-
dc.date.copyright2023-07-31-
dc.date.issued2023-
dc.date.submitted2023-07-06-
dc.identifier.citationThesis:
1. 簡宏偉(2021)。政府資安治理模式之研究。﹝碩士論文。東吳大學﹞臺灣博碩士論文知識加值系統。https://hdl.handle.net/11296/87hjfw

Report:
1. Executive Yuan National Security Council Information Security Office行政院國家資通安全會報(中華民國110年2月(2021 February))。 國家資通安全發展方案 (110 年至 113 年)。P.48-53. https://cloudschool.chc.edu.tw/open-message/074738/get-file/6041e464285d5d58af198572.pdf
2. Executive Yuan National Security Council Information Security Office行政院國家資通安全會報(中華民國 108 年 4 月修正 (2019 April Amendment)) 國家資通安全發展方案 (106 年至 109 年)。P.24. https://www-api.moda.gov.tw/File/Get/acs/zh-tw/cYa9VkznxWRvmqR
3. National Police Agency Cyber Police Bureau Report of the Study Group for Preventing Potential Cyber Damage, March 2023: https://www.npa.go.jp/bureau/cyber/pdf/20230406_2.pdf, pp. 11-12
4. The Government of Japan (September 2021). Cybersecurity for All ~ Cybersecurity which leaves no-one behind. P.11. https://www.nisc.go.jp/pdf/policy/kihon-s/cs-senryaku2021-en-booklet.pdf
5. World Economic Forum (2022). Global Risks 2022. https://www.weforum.org/reports/global-risks-report-2022/in-full/chapter-1-global-risks-2022-worlds-apart/

Webpage:
1. Act on the Establishment of the Digital Agency (Tentative translation) デジタル庁設置法(令和三年法律第三十六号) Act No. 36 of May 19, 2021 https://www.japaneselawtranslation.go.jp/en/laws/view/4276
2. Administration for Cyber Security. Official Website: (2023/06/19) https://moda.gov.tw/ACS/
3. Administration for Cyber Security. Official Website: (2022-09-02) 歷史沿革 https://moda.gov.tw/ACS/aboutus/history/608
4. Administration for Cyber Security. Official Website: (2023-05-25) 資安教育訓練 https://moda.gov.tw/ACS/operations/training/654
5. Basic Act on the Formation of a Digital Society (Act No. 35 of May 19, 2021) (デジタル社会形成基本法) Japanese Law Translation https://www.japaneselawtranslation.go.jp/en/laws/view/4282
6. Check Point Research (2023). Check Point Research Reports a 38% Increase in 2022 Global Cyberattacks (https://blog.checkpoint.com/2023/01/05/38-increase-in-2022-global-cyberattacks/#:~:text=Check%20Point%20Research%20Reports%20a%2038%25%20Increase%20in%202022%20Global%20Cyberattacks,-ByCheck%20Point&text=Check%20Point%20Research%20(CPR)%20releases,in%202022%2C%20compared%20to%202021.)
7. Executive Yuan Department of Cybersecurity. Official Website: (2023/06/19) https://english.ey.gov.tw/index.aspx
8. Government Public Relations Office of Japan. Official Website: (2023/06/19) https://www.gov-online.go.jp/useful/article/201703/1.html
9. Hayashi Masayuki (January 28, 2022). nippon.com. Can the New Digital Agency Transform Japan into a Tech-Savvy Society? Official Website: (2023/06/19) https://www.nippon.com/en/in-depth/d00773/
10. IPA. Official Website: (2023/06/19) https://www.ipa.go.jp/
11. iThome 新聞 (2023/05/16):打造臺灣金融專屬資安人才職能地圖,聚焦課程設計以促進培訓. https://www.ithome.com.tw/news/156897?fbclid=IwAR1vfEuyaM97uQNsIB8wkNDkJ1QiTCo8cDSh72xWZbLGOeRPwMXDbzVEjf0
12. iThome 新聞 (2023/06/04):開啟臺灣通用資安職能基準之路, 資安院人培中心積極展開行動. https://www.ithome.com.tw/news/156621
13. JPCERT. Official Website: (2023/06/19) https://www.jpcert.or.jp/english/
14. Ministry of Digital Affairs. Official Website: (2023/06/19) https://moda.gov.tw/
15. Ministry of Interior Official Website: (2023/06/19) https://www.moi.gov.tw/english/
16. National center of Incident readiness and Strategy for Cybersecurity (NISC) "Basic Concept of Skill Certification of Government Digital Human Resources" (January 31, 2018. (June 2, 2023 partially amended)). (政府デジタル人材のスキル認定の基準) https://www.nisc.go.jp/pdf/council/cs/taisaku/shingikan/dai24/24skill_nintei.pdf (https://www.nisc.go.jp/council/cs/taisaku/shingikan/index.html)
17. National Center of Incident Readiness and Strategy for Cybersecurity (NISC) Official Website 所管行政の概要Overview of Administrative Jurisdiction https://www.nisc.go.jp/about/overview/index.html
18. National center of Incident readiness and Strategy for Cybersecurity (NISC) Official Website of NISC. Strategy https://www.nisc.go.jp/eng/index.html#sec
19. National Information & Communication Security Taskforce Official Website: (2023/06/19) https://moda.gov.tw/en/ACS/nicst/551
20. National Initiative for cybersecurity careers and studies (NICCS) Official Website Workforce Framework for Cybersecurity (NICE Framework) https://niccs.cisa.gov/workforce-development/nice-framework
21. National Institute of Cybersecurity. Official Website: (2023/06/19)https://www.nics.nat.gov.tw/Default.htm?lang=en
22. National Police Agency Official Website: (2023/06/19) https://www.npa.go.jp/english/
23. National Police Agency (2022/04/07). “The Situation of Cyber Threats in 2021” P.1, P.24. https://www.npa.go.jp/publications/statistics/cybersecurity/data/R03_cyber_jousei.pdf
24. National Security Council. Official Website: (2023/06/19) https://www.mofa.go.jp/fp/nsp/page1we_000080.html
25. Personal Information Protection Commission of Japan (PPC, 個人情報保護委員会) Official Website (March 2023). 関係省庁・機関との連携. (2023/06/19) https://www.ppc.go.jp/personalinfo/legal/supervision/
26. Priority Policy Program for Realizing Digital Society(デジタル社会の実現に向けた重点計画) (2023/6/9). Digital Agency. https://www.digital.go.jp/assets/contents/node/basic_page/field_ref_resources/5ecac8cc-50f1-4168-b989-2bcaabffe870/b24ac613/20230609_policies_priority_outline_05.pdf (https://www.digital.go.jp/policies/priority-policy-program/#document)
27. TWCERT/CC/CC. Official Website: (2023/06/19) https://www.TWCERT/CC.org.tw/tw/mp-1.html
28. udn.com (聯合新聞網) 新聞 蔡總統參加2023資安大會重申資安即國安(2023/05/09) 記者:彭慧明 https://udn.com/news/story/7238/7152801		-
dc.identifier.urihttp://tdr.lib.ntu.edu.tw/jspui/handle/123456789/87886-
dc.description.abstract在全球快速數位化的浪潮中,日本於2021年9月成立了數位廳,而台灣則於2022年8月成立了數位發展部。日本和台灣積極參與數位化,都擁有政府機構、金融機構、能源供應系統和各種基礎設施等數位化的領域。對這些系統的攻擊可能對經濟和社會產生嚴重影響,因此提高了資訊安全的重要性。本論文關注兩國資訊安全的「組織架構」和「人才確保與培養」。筆者對從事資訊安全政策的官員和學者進行了訪談,以分享他們的專業知識和經驗。他們的見解和意見提供了無法從一般資訊來源獲得的寶貴信息。

第三章描述了對台灣專家的訪談結果,而第四章則聚焦於對日本專家的訪談。這些章奏深入探討了日本和台灣在組織架構和人力資源發展策略方面所採取的具體方法和實踐。第五章提供了日本和台灣之間的比較分析,檢視了資訊安全組織架構的四個要素,總結了台灣和日本的訪談概況,並討論了日本和台灣在追求有效資訊安全方面所面臨的任務和難題。基於整體發現,第六章提供了對日本政府的建議,包括加強資訊安全組織架構和人力資源發展工作的建議。

台灣的組織架構已經經歷了重大的變革,資通安全署需要透過試錯的方式來確立其角色。然而,在人才獲取和發展方面的計劃一直在穩步推進,領先於日本。另一方面,日本正試圖克服目前無法充分利用其組織架構優勢和展示領導力的現狀。為此,日本正在建立一個負責資訊安全的新的主要機構。在人才獲取和發展方面也有很大的進展空間,目前的情況仍然具有挑戰性。		zh_TW
dc.description.abstractIn the midst of rapid digitalization worldwide, Japan established Digital Agency in September 2021, while Taiwan launched the Ministry of Digital Affairs (MODA) in August 2022. Japan and Taiwan, both of which are actively engaged in digitalization, have government organizations, financial institutions, energy supply systems, and various infrastructures that have been digitized. Attacks on these systems can have serious economic and societal implications, leading to an increased importance of cybersecurity. This paper focuses on the "organizational structure" and "talent development" of cybersecurity in both Japan and Taiwan. Interviews were conducted with politicians, practitioners, and researchers involved in cyber policies to share their expertise and experiences. Their insights and opinions provided valuable information that would not be obtainable through general sources.

Insights obtained from the interviews to Taiwanese experts are described in Chapter 3, while Chapter 4 focuses on those to Japanese experts. These chapters delve into the specific approaches and practices employed by Japan and Taiwan in their respective organizational structures and human resource development strategies. Chapter 5 presents a comparative analysis between Japan and Taiwan, examining the four components of cybersecurity organizational structure, providing an overview of the interviews of both Japan and Taiwan, and discussing the tasks and difficulties faced by Japan and Taiwan in their pursuit of effective cybersecurity. Based on the whole findings, Chapter 6 offers suggestions to the Japanese government, including recommendations for enhancing their cybersecurity organizational structure and human resource development efforts.

The organizational structure in Taiwan has undergone significant changes, and Administration for Cyber Security (ACS) needs to establish its role through trial and error. However, plans regarding talent acquisition and development have been steadily progressing, ahead of Japan. On the other hand, Japan is seeking to overcome the current situation where it cannot leverage the benefits of its organizational structure nor demonstrate leadership. In doing so, Japan is in the process of establishing a new primary organization responsible for cybersecurity. In terms of cybersecurity talent acquisition and development, there is still much progress to be made and the situation remains challenging.		en
dc.description.provenanceSubmitted by admin ntu (admin@lib.ntu.edu.tw) on 2023-07-31T16:07:35Z
No. of bitstreams: 0		en
dc.description.provenanceMade available in DSpace on 2023-07-31T16:07:35Z (GMT). No. of bitstreams: 0en
dc.description.tableofcontents口試委員會審定書 i
謝誌 ii
摘要 iv
ABSTRUCT v
Table of Contents vi
List of Figures ix
List of Tables x
1 INTRODUCTION 1
1.1 Research Background 1
1.2 Research Purpose and Method 3
1.2.1 Research Purpose 3
1.2.2 Research Method 5
2 LITERATURE REVIEW 10
2.1 The cybersecurity threats brought about by rapid digitalization 10
2.2 Taiwanese Government’s Cyber Organizational Structure and Human Resource Development 13
2.2.1 Taiwan's cybersecurity-related organizational structure 13
2.2.2 Taiwan's Cybersecurity Human Resource Development 16
2.3 Japanese government’s Cybersecurity Human Resource Acquisition and Utilization 20
2.3.1 Japan's cybersecurity-related organizational structure 21
2.3.2 Japan's Cybersecurity Human Resource Development 26
3 INSIGHTS FROM INTERVIEW (TAIWAN) 33
3.1 Taiwanese Government Cybersecurity Organizational Structure 33
3.1.1 The main organization responsible for cybersecurity in Taiwan 33
3.1.2 The position and influence of the Executive Yuan in making cybersecurity policy 34
3.1.3 Hierarchy of three decision-making levels in Taiwanese government 35
3.1.4 Transformation of Organizational Structure in Taiwan 37
3.1.5 Exploration of its own positions and roles 40
3.1.6 The Relationship of Central Government and Local Government 43
3.1.7 Cybersecurity Incident Reporting Process 44
3.1.8 The current evaluation to the Taiwanese organizational structure 51
3.2 Taiwanese Government Human Resource Policy 53
3.2.1 The difficulty on cybersecurity talent acquisition and development 53
3.2.2 The difficulty of acquisition human resource for the central government, local government, and police. 54
3.2.3 The strategies for acquisition and training human resource for the central government, local government, and police. 58
3.2.4 Taiwanese government’s new strategies for acquisition and training human resource 65
4 INSIGHTS FROM INTERVIEW (JAPAN) 73
4.1 Japanese Government Cybersecurity Organizational Structure 73
4.1.1 The Primary Organization for Cybersecurity in Japan 73
4.1.2 The Role of the Cabinet Secretariat in Japan 74
4.1.3 Cybersecurity Incident Reporting Process 77
4.1.4 The situation where NISC is not fully fulfilling its role 83
4.1.5 Background factors that can be considered as reasons for NISC not fully fulfilling its role 85
4.1.6 The lack of emphasis on the concept of "public assistance." 89
4.1.7 Planned Organizational Restructuring of NISC 90
4.2 Japanese Government Cybersecurity Human Resource Policy 94
4.2.1 The difficulty on cybersecurity talent acquisition and development 94
4.2.2 Lack of Practicality in Cybersecurity Training Organized by NISC 96
4.2.3. The low motivation for obtaining certifications and participating in training program 98
5 Comparison of Japan and Taiwan 100
5.1 Four Components of Cybersecurity Organizational Structure 100
5.2 Overview from Interview to Taiwanese side and Japanese side 104
5.3 Task and Difficulty for Japan and Taiwan 109
6 Suggestion to Japanese Government 116
6.1 Suggestion to Cybersecurity Organizational Structure 116
6.1.1 Japanese cybersecurity policy should have stronger awareness for importance of "Public Assistance" 116
6.1.2 The "Enhanced NISC" should be established within the Cabinet Secretariat, similar to the former NISC. 119
6.1.3 The "Enhanced NISC" will establish multiple subcommittees for each field. 122
6.1.4 Integrate the organizations and streamline the organizational structure 124
6.1.5 Centralize the handling of reports and not leave them unattended 125
6.1.6 The "Enhanced NISC" will create and widely publish guidelines for incident response. 129
6.1.7 The "Enhanced NISC" strongly recognizes the need to establish itself as the "command center for cybersecurity in Japan." 136
6.2 Suggestions to Cybersecurity Human Resource Acquisition and Development 138
6.2.1 Categorizing cybersecurity talents and make precise cybersecurity skill framework 138
6.2.2 Developing and promoting cybersecurity as an industry 144
6.2.3 Supporting the rotation of cybersecurity talents between government and private sectors. 148
7 CONCLUSION AND FUTURE RESEARCH 152
7.1 Conclusion of This Research 152
7.2 Future Research 156
References 157
Appendix 163
1. Excerpts from Interview Question List (Taiwan) 163
2. Excerpts from Interview Question List (Japan) 175		-
dc.language.isoen-
dc.subject台灣和日本zh_TW
dc.subject政府zh_TW
dc.subject資訊安全zh_TW
dc.subject組織結構zh_TW
dc.subject人力資源發展zh_TW
dc.subjectOrganizational Structureen
dc.subjectTaiwan and Japanen
dc.subjectGovernmenten
dc.subjectCybersecurityen
dc.subjectHuman Resource Developmenten
dc.title探討政府部門資訊安全相關組織架構和人力資源發展策略- 日本與台灣的比較分析zh_TW
dc.titleComparing Organizational Structure and Human Resource Development Strategies in Japan and Taiwan's Government Sectors for Effective Cybersecurityen
dc.typeThesis-
dc.date.schoolyear111-2-
dc.description.degree碩士-
dc.contributor.oralexamcommittee陳 怡靜 ;楊 文芬zh_TW
dc.contributor.oralexamcommitteeYi-Ching Chen;Wen-Fen Yangen
dc.subject.keyword資訊安全,組織結構,人力資源發展,台灣和日本,政府,zh_TW
dc.subject.keywordCybersecurity,Organizational Structure,Human Resource Development,Taiwan and Japan,Government,en
dc.relation.page180-
dc.identifier.doi10.6342/NTU202301361-
dc.rights.note未授權-
dc.date.accepted2023-07-10-
dc.contributor.author-college管理學院-
dc.contributor.author-dept商學研究所-
顯示於系所單位:商學研究所

文件中的檔案:
檔案 大小格式 
ntu-111-2.pdf
  未授權公開取用 		2.65 MBAdobe PDF
顯示文件簡單紀錄


系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。

社群連結
聯絡資訊
10617臺北市大安區羅斯福路四段1號
No.1 Sec.4, Roosevelt Rd., Taipei, Taiwan, R.O.C. 106
Tel: (02)33662353
Email: ntuetds@ntu.edu.tw
意見箱
相關連結
館藏目錄
國內圖書館整合查詢 MetaCat
臺大學術典藏 NTU Scholars
臺大圖書館數位典藏館
本站聲明
© NTU Library All Rights Reserved