基于SDCA流程的高校网络资产安全管理应用研究
A Research on the Application of Network Asset Security Management in Universities Based on SDCA Process
梁凯 1张巍1
作者信息
- 1. 洛阳理工学院 信息化技术中心,河南 洛阳 471023
- 折叠
摘要
网络安全已成为国家安全战略的高地.高等院校在智慧校园建设过程中积累了大量网络信息资产,缺少必要监管的资产存在重大安全隐患,可能引发网络安全事件.针对高校网络资产安全管理现状和普遍存在的问题,遵从风险管理理念,结合实践经验,将高校网络资产安全管理划分为SDCA四个阶段,提出在S 阶段制定标准化网络资产管理规范、D阶段执行网络资产日常安全管理、C阶段建设基于信息化管理工具、A阶段加强模拟演练等建议.
Abstract
In recent years,network security has become the highland of national security strategy.In the process of smart campus construction,colleges and universities have also accumulated many network and information assets.Some of the assets lacking necessary supervision may cause major security risks and lead to major network security incidents.Aiming at the current situation and common problems of network asset security management in colleges and universities,this paper follows the concept of risk management and combines practical experience to divide the network asset security management in colleges and universities into four stages:SDCA(Standardization Do Check Action)cycle.It is proposed that standardized network asset management specifications should be formulated in stage S,daily security management of network assets should be implemented in stage D,information-based manage-ment tools should be built in stage C,and simulation exercises should be strengthened in stage A.
关键词
网络安全/高校网络资产/SDCA流程/安全管理Key words
network security/network assets/SDCA/security management引用本文复制引用
基金项目
中国高校产学研创新基金(2021ITA07021)
出版年
2024
NETL
NSTL
维普
万方数据