Abstract: Metrics of information security governance are necessary for improving E -Government security management. The information security situation of the government is analysised in this paper by using Management Oversight and Risk Tree(MORT). The management deficiencies are discussed as key factors affecting E-Government security, against which the evaluation system is explored.