摘要
为进一步提升国网四川电力数据资产管理体系的安全水平,深入推进信息化建设和全业务统一数据中心的实施,文章在深入分析国网四川电力数据安全现状的基础上,将人、系统、数据纳入统一体系进行分析处理,通过多种管理与技术手段,构建包含制度管理、权限管理、数据安全分级及控制策略等在内的数据资产安全管理体系。以此为基础,根据体系的每一项需求,给出相应的标准定义及可实现的落地方案。事实证明,该方案能够较好地适应公司数据安全管理的要求,具备可操作性和推广潜力。
In order to enhance the security level of SEPC data assets security management system and further promote the implementation of full business unified data center, this paper analyzed the SEPC status of security, incorporated people, systems and data into a unified system for analysis and processing. Then, a data asset security management system is constructed, which includes system management, authority management, data security classification and control strategy etc. Next, the corresponding standard definition and the feasible landing scheme are given. Facts proved that the scheme can meet the requirements of the company's data security management and can be popularized.
出处
《电力信息与通信技术》
2018年第1期90-95,共6页
Electric Power Information and Communication Technology
关键词
数据资产
安全管理体系
分级
规范
data assets
security management system
classification
standard
