摘要
随着企业信息化程度逐步提高,带来的网络安全风险愈发严重。企业在满足国家、行业的合规要求外,有效开展网络安全考核评价,是目前迫切需要解决的问题。基于此,笔者从识别考核对象、构建考核指标、明确考核权重、运用考核结果四个方面全面构建网络安全考核评价体系,以满足网络安全和信息化水平不同程度的企业需求,促进网络安全考核评价的良性发展。
With the gradual improvement of enterprise informatization,the risk of network security becomes more and more serious.In addition to meeting the compliance requirements of the state and industry,it is an urgent problem for enterprises to effectively carry out network security assessment and evaluation.Based on this,the author comprehensively constructs the network security assessment system from four aspects:identifying the assessment object,constructing the assessment index,defining the assessment weight and using the assessment results,so as to meet the needs of enterprises with different levels of network security and information technology,and promote the healthy development of network security assessment.
作者
曹宇
Cao Yu(School of Information Renmin University of China, Beijing 100872, China)
出处
《信息与电脑》
2018年第23期180-182,共3页
Information & Computer
关键词
网络安全
考核评价
科学性原则
network security
assessment and evaluation
scientific principle
