摘要
重要行业的网络和信息系统一直是敌对分子试图破坏和窃取信息的主要目标。行业各级主管部门也纷纷加强了网络安全建设,将建立自上而下的网络安全监管体系作为重要支撑手段来落实网络安全管理。目前行业网络安全监管在落地性、同步性和层次性等方面还存在问题。究其根源在于人才缺乏导致的安全能力分布不均衡。通过论述采用SECaa S模式实现网络安全监管服务化,将网络安全问题的验证、分析和解决方案设计等能力要求高的工作在云端解决,以弥补下级单位人才不足的缺陷,从而实现对整个行业网络安全短板的补足,全面提升行业网络安全的整体水平。
The network and system of important sectors are the focus of many cyber attacks. The competent department has strengthened network security construction. The establishment of supervision systems is one of important means. But there are still many problems in the current network security construction. The primary causes are the lack and the uneven distribution of talented people. This paper presents a servitization of network security supervision based on the mode of"Security as a Service( SECaa S) ". In this mode,the works needing high ability requirement such as validating problems,designing programs are finished in the cloud. By this way,the shortcomings of industry network security are filled. And the level of industry network security is improved.
作者
张智南
柯贤良
傅爱民
Zhang Zhinan1, Ke Xianliang1, Fu Aimin2(1. NSFOCUS, Inc. Beijing 100089, China; 2. The 28th Research Institute of China Electronics Technology Group Corporation, Nanjing 210007, Chin)
出处
《信息技术与网络安全》
2018年第8期23-26,共4页
Information Technology and Network Security
