| Information internet security has switched from simple security products and measures into the whole and systematic problem-solving plan. Dynamic secure strategy, co-acting secure products and co-acting secure chains have made the whole internet problem-solving plan, which can realize the co-action between the secure administration, protection, supervision, audit, serving and their correspondent products.The article deals with the current analysis and risk evaluation of CISC (Chongqing Iron and Steel Company)'s information internet security under the opening systematic co-action secure structure. And design the CISC's information internet security plan and practicing strategy according to the demanding, risk and cost-balance principal under the guidance of co-action security.CISC's internet problem-solving plan put forward in this article combines the secure administration with the secure technology.In terms of the technologic structure, it includes network security solution to management, application, system, network and physics layer,arming with the ability of assessment, protection, measurement, reaction and restoration; The managerial center platform of network security is employed to carry on the security management of network security facilities and important servicer of CISC to realize the combination among security managerial center, Fire-wall system,invasion-checking system, risk assessment system and anti-virus system.The internal security organization, labor-division of staff, staff training and definition of relevant coordination of the outer organization in terms of organizational structure.Administration includes security strategy, security rules, capital management, risk management and technologic management. The security managerial principles such as Safety First, minimum authorization, division of privilege, multi-layer security organism and emergency-proof plan are systematically put forward. |
PDF Full Text Request