Tasks of network security management
Source: Shangpin China |
Type: website encyclopedia |
Time: July 8, 2014
Network security management is to ensure the use safety of network information and the operation safety of information carriers. Website Design The requirement of safety management is to reach the safety level required by the management object and control the risk to an acceptable degree, that is, to make full use of technologies and methods in various fields. Solve the problem of unified management and coordination of various security technologies and products in the computer application system caused by the network environment, improve the defense capability of the network as a whole, and protect the security of system resources and services. The content of network security management can be summarized as the following five aspects.
(1) Physical security management Physical Security Management, also known as M Pp. Security Management, refers to the measures and processes to protect computer network equipment, facilities and other media from earthquakes, floods, fires, harmful gases and other environmental accidents. It includes environmental security, equipment security and media security. Physical security is the foundation of information system security, including machine room security, site security, machine room environment (temperature reduction/humidity/electromagnetic/noise/dust prevention/static electricity/vibration, etc.), fire prevention/lightning protection/enclosure prohibition of building access, facility security, equipment reliability, communication line security, radiation control and leakage prevention, power, power/air conditioning, disaster prevention and recovery, etc.
(2) Operation safety management Operation Security Management includes the security management of computer network operation and network access control, such as setting fire plugs to isolate internal and external networks, and the backup system to restore the system. Operational security management includes the isolation mechanism of internal and external networks, emergency response mechanism and supporting services, network system security monitoring, network security product operation monitoring, regular inspection and evaluation, system upgrade and patch processing, tracking the latest security turnover, disaster recovery mechanism and prevention, security audit, system transformation management, network security consulting services, etc.
(3) System security management System Security Management IV mainly includes the management of operating system security, database system security and network system security. Mainly based on the characteristics, actual conditions and management requirements of the network system, it ensures the safe operation of the entire network system by providing the system with targeted security strategy mechanisms, safeguard measures, emergency repair methods, security suggestions and security management specifications.
(4) Application security management Application Security Management consists of security management of application software development platform and security management of application system. Application security management includes program security test and analysis of business application software, anti attack side test of business communication information, resource access control verification test, entity identification test, backup and recovery mechanism check of business site, data uniqueness Z consistency/conflict prevention loophole, data confidentiality side test System reliability test and system availability test, etc.
(5) Comprehensive safety management Integrated Management Security mainly refers to various laws, regulations, policies, policies, specifications, standards, technical means, mechanisms and measures for personnel and network system security management. Comprehensive security management includes laws and regulations management, policy strategy management, standard management, personnel management, application system use management, software management, equipment management, document management, data management, operation management, transportation management, computer room management, security training management, etc.
The security management department of the computer information system shall determine the corresponding management system and tasks according to the management principles and confidentiality requirements. The tasks of network security management include: ① Assess the overall security of the network system, grasp the security status of the existing network in time, and determine the security level of the system according to the specific risk analysis and the importance of the work. ② Determine the specific scope, responsibility and authority of safety management according to the specific safety level requirements. ③ Perfect and improve the management system for personnel leaving the network center and important computer rooms of enterprises and institutions. ④ Pay attention to strict operating procedures and strategies, such as security design, determination of host and network reinforcement protection, etc. ⑤ Establish a sound and complete system maintenance system, using encryption mechanism and key management. ⑥ Formulate and implement emergency and recovery measures, technologies and methods. ⑦ Centralized monitoring and management of all security hardware and software products, unified configuration management of all security products through a unified interface, and display of various security warnings and log information in the way of beach crossing and management processing can greatly shorten the time to find problems, and improve the quick response ability of security event processing, And greatly improve the efficiency of network security management and reduce the workload of security administrators. ⑧ Centralized software security holes and hidden danger patch download, distribution, upgrade and audit, forming a centralized management mechanism to ensure the timely installation and update of system patches of enterprises and institutions. ⑨ Strengthen system monitoring, timely discover the abnormal flow address of network burst, and timely analyze and handle it.
In order to do a good job in network security prevention and disaster reduction, it is necessary to find all kinds of security problems and hidden dangers in a timely and accurate manner, determine the location and cause of the problems as soon as possible before or after the occurrence of the accident, and control the problems in the smallest range for handling and solving as soon as possible, so as to improve the overall network security protection capability and level.
Source Statement: This article is original or edited by Shangpin China's editors. If it needs to be reproduced, please indicate that it is from Shangpin China. The above contents (including pictures and words) are from the Internet. If there is any infringement, please contact us in time (010-60259772).
