摘要
安全域的规划和安全运营中心的建设均是安全建设过程中的重要工作,二者的有机结合可以使网络更加清晰,安全管理更加有效。特别是对金融行业,此建设思路能更有效地计划、实施、检验和改进ISO/IEC17799国际标准中提出的信息安全管理系统(ISMS),也是信息安全技术手段向管理手段过渡的重要里程碑。
The planning of security domains and the establishment of security operation center (SOC) are both important tasks during the information security construction, and their combination makes the network structure more construction pr clear, and makes security management more effective. Especially for financial sections, the oposal can realize Plan Do Check and Act procedure for Information Security Management System (ISMS) which is referred by ISO/IEC 17799, and it is also important transformation milestone from security technology to security management.
出处
《信息安全与通信保密》
2006年第6期87-89,共3页
Information Security and Communications Privacy
