Rookie

漫游指南-1 的世界

流浪在大理的斜杠青年
首页标签归档图文关于

Party A Information Security Work Outline

#日常笔记#安全建设73
AI Translation
This post is translated from Chinese into English through AI.View Original
AI-generated summary
The document outlines a comprehensive information security framework for an organization, focusing on various aspects of security management, development, and operations. Key areas include: 1. **Security Management Standards**: Emphasizes ISO 27001 for management, SDL for development, and ITIL for operations. 2. **Security Policies and Procedures**: Covers internal controls, audits, monthly reports, and training. 3. **Offensive and Defensive Security**: Addresses application security (web, app, internal), architecture security, protective measures (WAF, SOC, NIDS, HIDS), and emergency response protocols. 4. **Implementation Plan**: Highlights the importance of establishing security baselines for new systems, intrusion detection, and emergency response processes, including incident analysis and data collection. 5. **Organizational Structure**: Includes mapping internal teams and outlining network topology and system architecture. Overall, the document serves as a guideline for enhancing the organization's security posture through structured practices and proactive measures.

Daily Work#

  • Internet Information Leakage
  • Web/App/Intranet Penetration Testing
  • Application Launch/Version Iteration Update Security Testing
  • Vulnerability Security Early Warning/Establish Knowledge Base
  • Security Emergency/Vulnerability Scanning System/IPS/Database Audit

Security Management#

  • 1)27001: Focus on Security Management
  • 2)SDL: Focus on Secure Development
  • 3)ITIL: Focus on Security Operations
  • Security Policies/Standards
  • Security Processes
  • Security Inspections
  • Security Internal Control
  • Security Audits
  • Security Monthly Reports
  • Security Training

Offensive and Defensive Security#

  • 1 Application Security
    • WEB Security
    • APP Security
    • Intranet Host Security
    • Software Development Security
    • Third-party Outsourced Product Security
  • 2 Architecture Security
    • Intranet Monitoring
    • Network Security
    • System Security
    • Multi-level Protection/ISO27001 Construction
  • 3 Security Protection
    • WAF
    • Security Operations Center (SOC)
    • Network Intrusion Detection System (NIDS)
    • Host Intrusion Detection System (HIDS)
    • Honeypots/github/scanners/self-developed security tools
  • 4 Security Emergency Response Center
    • Public Channel Construction
    • Platform Vulnerability Collection
    • Vulnerability Cause Analysis
    • Regular Emergency Response Drills
    • Secure Coding/Offensive and Defensive Technology Research

Implementation Plan#

Three Things#

  • Security Baseline: Ensure that newly launched systems are secure
  • Intrusion Detection: IDS, Agent
  • Emergency Response: Processes
    • Incident Cause Analysis
    • Incident Forensics Investigation
    • System Backdoor Detection, Vulnerability Analysis
    • Data Collection, Analysis

Three Tables#

  • Internal Organizational Structure of the Company
  • Mapping of Online Products and Delivery Teams (Responsible Persons)
  • Overall Network Topology, System Logical Architecture, Physical Deployment, Inter-system Call Relationships, etc.
Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.