How Can the Security Industry Effectively Respond to the Challenges of Information Security_ Taigewa

Recently, IBM released a network security white paper, announcing the investigation results of its X-Force red team and security operator threatcare on the main systems used by smart cities. A total of 17 security vulnerabilities were found. More seriously, they will allow hackers to manipulate alarm systems and usurp sensor data, resulting in urban chaos. The emergence of more and more vicious network attacks has raised information security to the height of national security. On August 6, the Ministry of industry and information technology issued the notice on carrying out network security inspection in the telecommunications and Internet industry in 2018, focusing on the system for user information and network data collection, centralized storage and processing, public cloud service platform, public wireless LAN, public video monitoring camera and other key Internet of things platforms, online taxi information service platform Internet of vehicles information service platform, etc. The market scale of the information security industry has grown rapidly in recent years. According to the data collected from authoritative institutions in the analysis report on the development prospect forecast and investment strategic planning of China's information security industry from 2018 to 2023 by the forward looking Industry Research Institute, the global security market scale in 2018 was between us $87 billion and US $100 billion. Among them, according to IDC, the investment of global institutions in this field has reached a record US $81.7 billion in 2017. It is expected that the investment in information security will reach US $101.6 billion by 2020, with a compound growth rate of 8.3%. According to Gartner, the global network security expenditure in 2017 was US $89.1 billion and will reach US $180 billion by 2025. RMR (persistence Market Research) predicts that the global network security market will exceed US $200 billion in 2025. Security industry is one of the supporting industries of key information infrastructure. It involves all aspects of people's life and is an industry to ensure social security. Therefore, its own security is fundamental. In recent years, with the rapid development of the Internet, various security applications must also respond to information security challenges more effectively when enjoying the dividends of the Internet. Network security threats and risks are becoming increasingly prominent. The network security, data security and application security of the security industry are facing great challenges. How can we ensure security while developing? 01. Implement the responsibilities of information management personnel, establish a management organization specially responsible for computers, servers, networks and other equipment, clarify the job division and job responsibilities of information management personnel, and formulate corresponding rules and regulations. Various information management personnel shall monitor and manage the operation of enterprise information system, network, business system, database, security equipment, server, etc. on a daily basis according to the job division and job responsibilities, and do a good job in corresponding supervision and troubleshooting to ensure that problems can be found and solved in time. 02. Do a good job in the three safety work. The three safety work is the basic work to ensure the information security of the security industry. Through the comprehensive combing, comprehensive diagnosis and comprehensive reinforcement of the information system through the intelligent security operation management platform, master the current situation, identify problems, formulate measures and effectively improve. Comprehensive sorting: sort out the application system and information assets, and manage and analyze the sorted contents through the operation management platform. Comprehensive diagnosis: analyze the gap between level protection standards and security vulnerability risk, follow up the progress of level protection, and realize the closed-loop management process of security vulnerability detection, discovery, repair and verification from the perspective of information system. Comprehensive reinforcement: collect and analyze the security log information of application system and information assets in real time, eliminate log noise, and realize the intelligent merging and analysis of massive security logs based on network security situation understanding and attack chain reasoning engine, so as to provide decision-making basis for comprehensive reinforcement. 03. Do a good job in network security protection with technological innovation, use new technologies and applications, carry out network security level protection management and technical protection, adopt technologies such as active defense, trusted computing and artificial intelligence, innovate network security technology protection measures, improve network security prevention ability and level, and strengthen the research, development and application of network security level protection technology, Promote safe and reliable network products and services. 04. From tool makers to capability providers, in the future network security threats, large-scale security intelligence systems and expert social network systems will integrate with each other, and multi-party cooperative operations will become the new normal of network security emergency response. Use excellent operation capability to reduce the success rate of attack, and use faster emergency response speed to reduce the loss caused by successful attack. In other words, through these two security capabilities, helping enterprises or organizations control security risks at an acceptable level is a more reasonable security concept and decision-making choice. Conclusion: with the continuous popularization and development of Internet technology, the means of network attack are becoming more and more diversified, and the programming level of hackers is becoming higher and higher, which puts forward higher requirements for network security management. In the future, network information security must start from two aspects, technical innovation and personnel training, so as to effectively respond to network attacks and ensure the safe and stable operation of the system.