English  |  正體中文  |  简体中文  |  Post-Print筆數 : 27 |  Items with full text/Total items : 109952/140887 (78%)
Visitors : 46369468      Online Users : 944
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: https://nccur.lib.nccu.edu.tw/handle/140.119/143892


    Title: 金融機構作業委外涉及雲端服務之監理法制及相關議題研究
    Regulatory and Supervisory Issues Relating to Cloud Adoption for the Outsourcing of Financial Institutions
    Authors: 李盈欣
    Lee, Ying-Hsin
    Contributors: 臧正運
    Tsang, Cheng-Yun
    李盈欣
    Lee, Ying-Hsin
    Keywords: 雲端運算
    雲端服務提供商
    作業委外
    風險評估
    風險管理架構
    關鍵或具重大性委外
    Cloud computing
    Cloud service provider
    Outsourcing
    Risk assessment
    Risk management framework
    Critical/material/important of the outsourced function
    Date: 2023
    Issue Date: 2023-03-09 18:51:42 (UTC+8)
    Abstract: 近年Covid-19疫情爆發,金融機構為推動數位化發展,同時也深化雲端計算來開發其現有基礎架構無法有效提供的產品或服務。我國金管會對金融機構委託他人處理作業涉及雲端服務,已於「金融機構作業委託他人處理內部作業制度及程序辦法」定有規範,惟金融機構將作業或服務委託雲端業者處理,應確保具備有效的資訊安全管理及風險管理流程與措施,以抵減產生的風險。本文將就各國金融融監理機關對金融機構委外使用雲端服務產生之風險、威脅及可採行之風險抵減措施進行分析,並就強化我國現行金融監理法制及可行作法提出建議。
    With the outbreak of Covid-19 in recent years, financial institutions use cloud computing to develop products or services that their existing infrastructure cannot effectively provide to promote digital financial services. The Financial Supervisory Commission (FSC) had stipulated "Regulations Governing Internal Operating Systems and procedures for the outsourcing of Financial Institutions operation” for Financial Institutions using the cloud service. This thesis will analyze the supervisory mechanism of various competent authorities for the risks, threats and mitigation measures in outsourcing arrangements to cloud service providers and provide relevant suggestions for strengthening our country`s current regulations and feasible practices.
    Reference: 一、書籍
    1. Brett King著,林凱雄、周羣英與孫一仕譯,Bank4.0:金融常在,銀行不再?,2018年12月。
    2. 王文宇等,金融法,10版,2019年3月。
    3. 王志誠,現代金融法,3版,2017年10月。
    4. 王服清等,行政組織∕行政執行∕訴願制度∕食品安全∕金融監理,2016年3月。
    5. 谷湘儀、臧正運,變革中的金融科技法制,2019年6月。
    6. 莊植寧、張陳弘,新時代之個人資料保護法制:歐盟GDPR與臺灣個人資料保護法的比較說明,2019年6月。
    二、期刊論文
    1. 李治安,當法律漫步在雲端,法學新論,第25期,頁49-65,2010年8月。
    2. 許銘瑋,雲端服務之個人資料保護問題,刑事法雜誌,第62卷第2期,頁93-61,2018年4月。
    3. 張乃文,雲端運算產業發展之策略規劃與法制因應,科技法律透析,第22卷第12期,頁23-40,2010年12月。
    4. 張乃文,雲端運算環境之法規遵循議題剖析,科技法律透析,第25卷第7期,頁21-40,2013年7月。
    5. 程法彰,我國資通訊產業的個資去識別化運用爭議。萬國法律,第230期,頁73-81,2020年4月。
    6. 臧正運,金融科技創新與監理的平衡,哈佛商業評論,2017年1月號,頁126-129。
    7. 臧正運,區塊鏈運用對金融監理之啟示及挑戰,月旦法學雜誌,第267期,頁136-151,2017年8月。
    8. 臧正運,開放銀行的關鍵挑戰 第三方服務提供者之治理模式選擇,財金資訊月刊,第97期,頁8-15,2020年5月。
    9. 臧正運,論金融科技發展的監理難題與法制策略=以我國的規範與實踐為核心,政大法學評論,第163期,2020年10月
    10. 劉定基,雲端運算與個人資料保謢—以台灣個人資料保護法與歐盟個人資料保護指令的比較為中心,東海大學法學研究,第43期,頁53-106,2014年8月。
    11. 劉靜怡,雲端運算趨勢與個人資訊隱私保護。全國律師,第14卷第2期,頁39-52,2010年2月。
    12. 羅進明,談跨領域科技治理與管理之未來展望(一),法務通訊,第2783期,頁3-6,2016年1月15日。
    13. 羅進明,談跨領域科技治理與管理之未來展望(二),法務通訊,第2784期,頁3-5,2016年1月22日。
    三、政府出版品
    1. 法務部,歐盟資料保護一般規則(General Data Protection Regulation,GDPR)與我國個人資料保護法之重點比較分析,2018年。
    英文資料(按作者姓氏字母排序)
    一、期刊論文
    1. Lerner, A.P., The Concept of Monopoly and the Measurement of Monopoly Power, 1 THE REVIEW OF ECONOMICS STUDIES 157 (1934).
    2. Tsang, Cheng-Yun, From Industry Sandbox to Supervisory Control Box: Rethinking the Role of Regulators in the Era of FinTech, 2019 J. TECH. L. & POL`Y 355 (2019).
    二、政府與國際組織出版品
    1. The Association of Banks in Singapore (ABS), ABS Cloud Computing Implementation Guide 2.0 (Aug. 2, 2019), https://abs.org.sg/docs/library/abs-cloud-computing-implementation-guide.pdf .
    2. ABS, Guidelines on Control Objectives and Procedures Outsourced Service Providers (2017).
    3. Board of Governors of the Federal Reserve System, Guidance on Managing Outsourcing Risk (2013).
    4. Board of Governors of the Federal Reserve System, Guidance on Managing Outsourcing Risk (2021).
    5. BOE, Operational Resilience: Critical Third Parties to The UK Financial Sector (2022).
    6. EBA, Final Report on EBA Guidelines on Outsourcing Arrangements (2019).
    7. FCA, FG 16/5 Guidance for Firms Outsourcing to the ‘Cloud’ and Other Third-Party IT Services (2016).
    8. Federal Bureau of Investigation, FBI Flash: Malicious Cyber Activity of Iran-based Mabna Institute (2018).
    9. FFIEC, FFIEC Joint Statement on Risk Management for Cloud Computing Services (2020).
    10. FRS, FDIC, OCC, Proposed Interagency Guidance on Third-Party Relationships: Risk Management (2021).
    11. FRS, FDIC, DOT, Proposed Interagency Guidance on Third-Party Relationships: Risk Management (2021).
    12. FSB, Financial Stability Implications from FinTech: Supervisory and Regulatory Issues that Merit Authorities’ Attention (2017).
    13. FSB, FinTech and Market Structure in Financial Services: Market Developments and Potential Financial Stability Implications (2019).
    14. FSB, Third-Party Dependencies in Cloud Services Considerations on Financial Stability Implications (2019).
    15. FSI, Regulating and Supervising the Clouds: Emerging Prudential Approaches for Insurance Companies (2018).
    16. FSI, Big Tech Interdependencies – A Key Policy Blind Spot (2022).
    17. FTC and DOJ, Antitrust Guidelines for Collaborations Among Competitors (2000).
    18. House of Commons Treasury Committee, IT Failures in the Financial Services Sector (2019).
    19. IAIS, Cloud Computing: Regulatory and Supervisory Approaches (2019).
    20. MAS, Guidelines on Outsourcing (2016).
    21. MAS, FAQ on MAS Guidelines on Outsourcing (2016).
    22. MAS, Technology Risk Management Guidelines (2021).
    23. MAS, Advisory on Addressing the Technology and Security Associated with Public Cloud Adoption (2021).
    24. NSA, Mitigating Cloud Vulnerabilities (2020).
    25. IIF, Cloud Computing in the Financial Sector Part 3: Could Service Provides (CPSs) (2019).
    26. OCC, Consent Order (2020).
    27. OCC, FRS, FDIC, Sound Practices to Strengthen Operational Resilience (2020).
    28. OCC, OCC Reports on Risks, Effects of COVID-19 Pandemic on Federal Banking System (2021).
    29. OCC, OCC Semiannual Risk Perspective for Fall 2021 (2021).
    30. OCC, OCC Reports on Key Risks Facing Federal Banking System (2022).
    31. OCC, Semiannual risk perspective for Spring 2022 (2022).
    32. PRA, Reports by Skilled Persons (2014).
    33. PRA, Outsourcing and Third Party Risk Management (2021).
    Description: 碩士
    國立政治大學
    法學院碩士在職專班
    104961023
    Source URI: http://thesis.lib.nccu.edu.tw/record/#G0104961023
    Data Type: thesis
    Appears in Collections:[法學院碩士在職專班] 學位論文

    Files in This Item:

    File Description SizeFormat
    102301.pdf3160KbAdobe PDF20View/Open


    All items in 政大典藏 are protected by copyright, with all rights reserved.


    社群 sharing

    著作權政策宣告 Copyright Announcement
    1.本網站之數位內容為國立政治大學所收錄之機構典藏,無償提供學術研究與公眾教育等公益性使用,惟仍請適度,合理使用本網站之內容,以尊重著作權人之權益。商業上之利用,則請先取得著作權人之授權。
    The digital content of this website is part of National Chengchi University Institutional Repository. It provides free access to academic research and public education for non-commercial use. Please utilize it in a proper and reasonable manner and respect the rights of copyright owners. For commercial use, please obtain authorization from the copyright owner in advance.

    2.本網站之製作,已盡力防止侵害著作權人之權益,如仍發現本網站之數位內容有侵害著作權人權益情事者,請權利人通知本網站維護人員(nccur@nccu.edu.tw),維護人員將立即採取移除該數位著作等補救措施。
    NCCU Institutional Repository is made to protect the interests of copyright owners. If you believe that any material on the website infringes copyright, please contact our staff(nccur@nccu.edu.tw). We will remove the work from the repository and investigate your claim.
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback