摘要
随着信息系统的发展,业务运转对信息系统的依赖性越来越强,安全管理的成败直接关系到业务的正常运转。安全运维作为安全管理的重要组成范畴,在传统安全管理系统建设中却并未得到足够的重视。通过对IT服务管理知识框架ITIL进行分析和研究,建立起以告警、预警、工单为核心流程的新型响应处理机制,提高了安全管理的水平和安全运维的效率。从业务和运维的角度对安全管理的响应流程进行重构,推动新型安全管理平台的设计和开发工作。
With the development of information systems, the business of the companies and organizations rely on them increasingly. The threats of the information system may lead to failure of the business. Security maintenance is an important component of the security operations center. However it didn' t take enough attention in traditional Security Operations Center. With the research on ITIL, a new type of processes handling mechanism is established which the core processes responses are alarm, warning and work orders mproves the level of safety management' s and the efficiency of sec to reconstruct safety management process and promote the design and urlty devek maintenance. The thought of business and maintenance pment of new s Security Operations Center.
出处
《计算机安全》
2013年第3期36-40,共5页
Network & Computer Security
基金
山东省自然科学基金项目(ZR2009GM009)资助
关键词
安全运维
信息技术基础结构库(ITIL)
响应处理机制
Security maintenance, information technology infrastructure library (ITIL), processes handling mechanism And it s used
