摘要
保护网络空间安全,落实到具体操作层面就是保护信息资产的安全。针对高校信息资产管理过程中存在的各种安全问题,结合福建师范大学实际,根据国家网络安全等级保护标准体系,将管理过程规范为定级备案、指标差距分析和整改、等级测评、安全检测、安全监测预警、应急处置、安全通报、检查评估共8个环节,并通过多角色共同治理和信息化管理手段,构建了切合实际的安全管理模式。
To protect the security of cyberspace,it is to protect the security of information assets.This paper analyzed various security issues in the process of information asset management in colleges and universities.In combination with the actual situation of Fujian Normal University and according to the standards of classified protection of cybersecurity,the management process was standardized as classification and record,index gap analysis and reconstruction,testing and evaluation,security monitoring and warning,emergency disposal,safety notification,inspection and evaluation.At the same time,a practical security management model had been constructed through the multi-role governance and information management tools.
作者
庄君明
ZHUANG Junming(Network and Data Center,Fujian Normal University,Fuzhou 350117,China)
出处
《实验室科学》
2020年第4期237-240,共4页
Laboratory Science
基金
福建省中青年教师教育科研项目(项目编号:JA15103)。
关键词
信息资产
网络安全等级保护
安全管理模式
information assets
classified protection of cybersecurity
security management mode
