Design And Implementation Of Grade Protection Evaluation Project Executive Management Information System

With the increasingly serious network security situation at home and abroad,the information systems of enterprises and institutions are facing the threat of cyber attacks.The network security law,which was formally implemented in 2017,stipulates that China adopts a network security grade protection system,which requires information systems of enterprises and institutions to build information security according to relevant grade protection standards and requirements,but whether the construction achieves the standard needs the specialized grade protection evaluation organization to carry on the judgment.The management of evaluation execution process of Grade Protection Evaluation Organization is the meticulous management of the whole process of operation process,document control,record control and process supervision,the quality and efficiency of the implementation process not only directly affect the quality and efficiency of the evaluation,but also reflect the quality system of the organization.At the same time,the China National Accreditation Service for Conformity Assessment(CNAS)requires the rating protection and assessment agencies to manage the agencies in accordance with the accreditation guidelines for inspection agencies,and each agency has invested a great deal of time,personnel and energy in this regard.In this paper,based on CNAS accreditation standards,a set of implementation management information system is designed and implemented for the evaluation management of network security grade protection evaluation institutions.On the one hand,it can help the project management of the evaluation organization to reach the recognition standard of CNAS,on the other hand,it can optimize the project management process of the organization,improve the management efficiency and project execution efficiency.The main work of this paper is as follows:(1)By participating in the evaluation process,the business process and project management status of Grade Protection Evaluation Institutions are studied.(2)By studying the accreditation standards of CNAS for Grade Protection evaluation organization,the project management requirements of the testing and evaluation organization under the CNAS standard are defined.(3)The system requirements are determined by analyzing the evaluation task execution process of the grade protection evaluation organization and combining with relevant requirements.(4)In accordance with the requirements of software engineering,this paper carried out the design of the architecture and functional modules of the implementation management information system for grade protection evaluation project and completed the development and deployment of the system,and tested the system functions to ensure the realization of all design objectives.