网络安全人员能力要求国家标准在"关基"行业的应用
National Standard Application of Requirements for Competence of Cybersecurity Workforce in Critical Information Infrastructure Industry
王庆 1张斌 2杨玄3
作者信息
- 1. 国家计算机网络应急技术处理协调中心
- 2. 中韩(武汉)石油化工有限公司
- 3. 广州蓬勃教育科技有限公司
- 折叠
摘要
为了加强网络安全教育培训工作,提升关键信息基础设施企业全员的网络安全意识和专业能力,将GB/T 42446-2023《信息安全技术 网络安全从业人员能力基本要求》国家标准应用在石油石化行业重点企业的人员网络安全教育培训场景.通过三环节实施应用模式,采用标准中的工作类别、工作角色、知识和技能要求等核心内容,实现了企业一般人员的网络安全意识培训,确保网络安全不遗漏一人.标准的实践应用扩大了网络安全在传统石油石化行业的影响力,也促进了网络安全培训认证业务的发展.
Abstract
To strengthen cybersecurity training and improve cybersecurity awareness and professional skills of enterprise staff in critical information infrastructure field,apply the national standard of GB/T 42446-2023"Information security technology-Basic requirements for competence of cybersecurity workforce"for cybersecurity training scenario of enterprise staff in the petroleum and petrochemical industry.Through three-process application mode,adopt the core contents of the standard(such as work category,work role and requirements of knowledge and skill)and complete the cybersecurity awareness training for general staff,thus ensure cybersecurity missing nobody.The application of the standard expands the influence of cybersecurity in the traditional petroleum and petrochemical industry,and promotes the business development of cybersecurity training and certification.
关键词
网络安全能力要求/网络安全教育培训/网络安全能力认证/三环节实施应用模式Key words
cybersecurity competence requirements/cybersecurity training/CCSC/three-process application mode引用本文复制引用
出版年
2024
NETL
NSTL
万方数据