海关数据安全风险管控中网络安全国家标准的应用实践
Application Practice of National Standards for Network Security in Customs Data Security Risk Control
董阔 1王玮 1张迪南 2张锐卿 3李月 3杨剑3
作者信息
- 1. 海关总署科技发展司
- 2. 南京海关
- 3. 北京天融信网络安全技术有限公司
- 折叠
摘要
围绕海关数据安全风险管控需求,依据GB/T 24364-2023和GB/T 37988-2019国家标准,对数据安全管理工作重点关注的数据资产管理、数据分类分级、保护策略执行、数据风险监测等进行实践落地,建设以数据为中心的适应海关业务发展的数据安全保护体系,从资产安全管理、风险及时发现、策略动态调整、安全状态可视的维度提升海关数据安全风险管控能力.
Abstract
Focusing on the data security risk control needs of the Customs and following the national standards of GB/T 24364-2023 and GB/T 37988-2019 for data security and risk management,the project implements and lands on the management of data asset,classification and grading of data,implementation of protection strategy,monitoring of data risk,etc.,which are the key concerns of the data security management work,and builds a data-centric security protection system that adapts to the development of the Customs'business.It improves the capability of the Customs'data security risk control in terms of the dimensions of asset security management,timely detection of risks,dynamic adjustment of the strategy,and visualization of the security status.
关键词
数据安全/风险管理/资产梳理/分类分级/安全大数据Key words
data security/risk management/asset sorting/classification and hierarchy/security big data引用本文复制引用
出版年
2024
NETL
NSTL
万方数据