信息化建设是现代企业谋发展的重要着力点，但信息安全风险问题弱化了信息化的重要作用。本文从黑客攻 击、内部控制管理、应用系统安全等方面，分析了现代企业信息的安全风险，并在此基础之上，阐述了企业信息安全风险的控制 策略。本文旨在强化对企业信息安全风险的认识，并为企业构建信息安全防范体系提供一定的参考资料，深化现代企业信息 化建设。

Informatization construction is an important focal point of the modern enterprise development, while the problem of information security risk weakens the important role of information technology. From the hacker attack, the internal control management, application system security and other aspects, this article analyzes the information security risk in modern enterprises, and on this basis, expounds the control strategy. This paper aims to strengthen the understanding of enterprise information security risk, and provide certain references for enterprise to construct the information security system, deepening the informationzation construction of modern enterprises.