作为第一批获批的信息安全管理体系认证机构,我们致力于,为企业提供全方位的信息安全管理体系解决方案,以风险评估为基础,确保选择适当和相宜的安全控制措施,充分保护信息资产并给予相关方信心,帮助企业轻松应对信息安全的全球化危机。
信息安全整体解决方案
信息安全治理
◎组织架构◎角色与责任
◎教育与培训
◎合作与沟通
信息安全管理
◎信息安全方针◎资产管理
◎人力资源安全
◎物理与环境管理
◎通信与操作管理
◎信息系统获取.开发与维护
◎业务连续性管理
◎符合性
信息安全管理
◎信息安全技术◎身份管理
◎访问设置
◎内容安全
◎备份恢复
◎审计监控
信息安全运维
◎配置管理◎事件管理
◎问题管理
◎变更管理
◎发布管理
As thc first approved certification body of 1SMS, we keen on provide the solutions of infomation securitymanagement system.Based on the risk assessment , we take suitable and appropriatc security control mcasuresto protect the information assets and help the enterprise to deal with the globalization crisis of informationsecurity easily.
Certification standard:
GB/T 22080 /ISOnIEC 27001
Total solutions for information security
Information Security Governance: Organization Structurc of Information Security,Security Rolesand Responsi bilitics, Education and Training of Information Security,Cooperation and Communication ofInformation Security.
Information Security Management: Information Security Policy,Asset Managcm ent, Human ResourcesSecurity,Physical and Environmental Management,Communication and Operation Management, Inf ormationSystcm Aqquisition,Development and Maintenancc.Business Continuity Management,Compliancc.
Information Security 'Technology: ldentity Management, Acecess Control,Content Security,BackupRecovery,Audit Monitoring .
Information Security Operations: Configuration Management,Security Accidents Management,Problem Management, Change Management, Relcasc Management.
