基于云安全平台的信息安全风险预警管理系统

Information Security Early-Warning Management System Based on Cloud Security Platform

随着电力行业信息系统应用的不断发展,电力信息安全引起了广泛的关注,信息安全工作得到了进一步的加强。将云安全风险预警管理系统平台、前端检测系统与基于ITIL的运维管理结合起来,再辅之以信息安全风险评估方法,构建了一个安全风险预警管理系统。该系统既能借助检测系统的快速检测和阻断的能力,还能基于信息安全风险评估结果判定告警优先级,并根据此优先级由服务台分派和跟踪处理过程,实现安全威胁处理的统一监管和绩效考核。

With the development of information system in electric power industry, power information security has attracted much attention. In this paper, the cloud safety risk early-warning management system platform, front-end detection system and operation management based on ITIL are combined with information security risk assessment method to construct a safety risk early-warning management system. The proposed system not only has the ability of rapid detection and block, but also can determine the alarm priority based on information security risk assessment results. The service counter can dispatch and trace the processing procedure according to the alarm priority, thus the unified supervision and performance assessment of security threat dealing can be realized.