| 电力系统信息安全风险管理体系的研究与应用 |
| |
| 引用本文: | 苏立.电力系统信息安全风险管理体系的研究与应用[J].电脑与微电子技术,2011(18):42-47. |
| |
| 作者姓名: | 苏立 |
| |
| 作者单位: | 广东电网公司中山供电局,中山528400 |
| |
| 摘 要: | 提出一种基于风险管理的信息安全管理体系,然后以中山供电局为实例,介绍电力系统信息安全风险管理体系的建立和推广过程、体系运转时遇到的问题与采用的方法,体系的审核方法等。重点介绍体系中的管理方法工具的运用,例如风险评估所采用的资产风险值CIA评估方法、体系落地时采用的“两单”。体系运转的“四大机制”等,并在实际应用中通过检验.具有较高的指导和参考价值。
|
| 关 键 词: | 信息安全 电力系统 风险管理 |
Research and Application of Information Security Risk Management System of Power System |
| |
| Authors: | SU Li |
| |
| Affiliation: | SU Li (Zhongshan Power Enterprise, Guangdong Power Grid Company, Zhongshan 528400) |
| |
| Abstract: | Presents a information security management system based on risk mangement, and making Zhongshan Power Supply Bureau as an example, describes the information security management system building process, system operation problems encountered with the use of the method, system audit approach and so on. Mainly introduces the information security management system management tools in use, such as risk assessment values used by CIA asset risk assessment methods, "two tables", "the four mechanisms" used in system. These tools have been tested all through the actual inspection, has the higher guidance and reference value. |
| |
| Keywords: | Information Security Power System Risk Management |
| 本文献已被 维普 等数据库收录! |
|
