3 network security self-inspection reports

# Report # Introduction The purpose of establishing network security is to strengthen network management and ensure the safe operation of the network. The following is the network security self-inspection report, welcome to read!

Network Security Self-inspection Report Part I

According to the notification requirements of the Propaganda Department of the County Party Committee on Forwarding the Notice on Carrying out Network Security Inspection, our bureau attaches great importance to it, and seriously organizes and implements it in combination with the inspection contents and related requirements, and conducts one-by-one investigation on six aspects of related network systems, such as security management, technical protection, emergency work, publicity and education training, level protection work and commercial password use. The self-inspection is summarized and reported as follows: 1. Strengthen leadership and set up a leading group for network security work.

In order to further strengthen the security management of the global information network system, our bureau has set up a network security leading group with the director as the team leader, the leaders in charge as the deputy team leader and the office staff as members, which has achieved a clear division of labor and specific responsibilities. The division of labor and their respective responsibilities are as follows: the director is the first person responsible for computer network security and is fully responsible for the management of computer network and information security. The deputy team leader is responsible for the management of computer network and information security. Responsible for the daily coordination and supervision of computer network security management. Office staff are responsible for the daily affairs of computer network security management.

Second, the computer and network security situation

① Network security. Anti-virus software has been installed on all computers in our bureau, and security protection measures such as strong password, database storage and backup, mobile storage device management and data encryption have been taken. Clarify the responsibility of network security and strengthen network security work.

② Daily management. Do a good job in the management of intranet, extranet and application software, ensure that "confidential computers are not connected to the Internet, and computers connected to the Internet are not classified", and manage, maintain and destroy CDs, hard disks and mobile hard disks in strict accordance with confidentiality requirements. Focus on the "three major safety" investigations: First, strengthen hardware safety management, including dust prevention, moisture prevention, lightning protection, fire prevention, theft prevention and power connection; The second is to strengthen network security management, implement sub-network management for computers in our bureau, strictly distinguish between internal network and external network, rationally wire, optimize network structure, and strengthen password management, IP management and online behavior management. The third is to strengthen the security management of computer applications, including mail system, resource management and software management. Regularly organize global employees to learn network knowledge, improve the level of computer use, and ensure network security.

Three. Management of computer confidential information

In recent years, our bureau has strengthened organization and leadership, publicity and education, and daily supervision and inspection, focusing on the management of classified computers. The management of external computer equipment and mobile equipment adopts special personnel to keep confidential documents alone, and it is forbidden to bring mobile media with confidential contents to computers on the Internet to process, store and transmit documents, thus forming a good security and confidentiality environment. Strictly distinguish between internal networks and external networks, physically isolate confidential computers from the Internet and other public information networks, and implement security measures. So far, there has not been a computer leakage accident. The use of other non-confidential computers and networks is also strictly in accordance with the relevant provisions on computer network and information security management, and management is strengthened to ensure the network information security of our bureau.

Four, the use of software and hardware specifications, equipment running in good condition.

In order to further strengthen the network security of our bureau, our bureau has upgraded some necessary computer equipment. The main computer is equipped with UPS, and anti-virus software is installed at each terminal. The hardware operating environment meets the requirements. Lightning protection grounding wire is normal, lightning protection equipment is basically stable, and no lightning accident has occurred; This year, a pair of aging optical fiber transceivers were replaced. At present, network hardware devices such as optical fiber transceivers and switches are operating normally, and various computers, auxiliary devices and software are operating normally.

Five, strict management, standardize equipment maintenance

Our bureau implements the management system of "who uses, who manages and who is responsible" for computers and their equipment. In terms of management, the first is to adhere to the principle of "managing people by system". The second is to strengthen information security education and improve employees' computer skills. At the same time, distance education and popular science propaganda are used to publicize the knowledge of network security and enhance the awareness of network security of cadres in party member. In terms of equipment maintenance, faulty equipment should be repaired and replaced in time, and foreign maintenance personnel should be accompanied by relevant personnel, and their identities should be verified to standardize equipment maintenance management.

Problems of intransitive verbs and the next steps

Through this network security self-inspection, we also found some weak links in the process of network management, such as: the staff of individual units are not strong enough in network security awareness. In the future work, we will further strengthen safety awareness education and prevention skills training, regularly train staff, pay attention to the combination of civil air defense and technical defense, and do a good job in network security of our bureau.

Network Security Self-inspection Report Part II

According to the spirit of the document "Notice on Carrying out Special Inspection of E-government Network Information Security and Network Management in * * City" issued by Nanxin Lianfa [XX] No.4, our bureau actively organized and implemented it, and conducted self-examination on network security infrastructure construction, network security prevention technology and network information security and confidentiality management, and made a profound analysis of our bureau's network information security construction work. The self-inspection is hereby notified as follows: 1. Strengthen leadership and set up a network and information security work organization.

In order to further strengthen the security management of global network information systems, our bureau has set up a leading group for the security and confidentiality of network and information systems headed by the director, with an office under it, which has achieved a clear division of labor and specific responsibilities to people. Ensure the safe and smooth implementation of network information.

Second, the current situation of network security in our bureau

1997, the statistical information automation construction of our bureau has gradually developed from a small local area network to a four-level interconnected network with the national bureau, the autonomous regional bureau and the county bureau. Cisco 7600 and 3600 switches are used in the network core, 3com4226 switch is used in the data center, and 3com4226 switch, Cisco 2924 switch and Lenovo Tiangong ispirit 1208e switch are used in the acquisition layer, which can provide more than 50 wired access points 150 in total, and about 80 have been used at present. The backbone of the data center is gigabit switched, and 100 megabit is switched to the desktop. Internet export is provided by the municipal information office, which is a double 100-megabit optical fiber; It is directly connected with the Statistics Bureau of the Autonomous Region through 2M optical fiber, and the statistics bureaus of counties and three development zones use Tianrongxin * virtual private network software to connect to the network of the Statistics Bureau of the Autonomous Region from the Internet, with a total bandwidth of 4M, and then connect to our bureau. Horizontally, actively promote the interconnection between the Municipal Bureau of Statistics and the government affairs network. At present, it has realized optical fiber connection with 100 municipal party and government departments and 12 county and district governments. Our bureau uses Tianrongxin hardware firewall to protect the network, uses Weisi network isolation card and file self-defense software to protect key computers, and installs genuine Kingsoft Internet Security antivirus software to prevent and control viruses on computers around the world.

Three, my bureau network information security management

In order to do a good job in informatization construction and standardize statistical informatization management, our bureau has specially formulated the Rules and Regulations on Informatization of * * Municipal Bureau of Statistics, which provides detailed regulations on informatization management, internal computer security management, computer room management, computer room environment security management, computer and network equipment management, data, information security management, network security management, computer operator management, website content management and website maintenance responsibility, and further standardizes our information security management.

In view of the computer security work, our bureau has formulated a confidential computer management system, and computer users have signed the "Responsibility Letter for Computer Security Work of * * Municipal Bureau of Statistics", and whoever uses it will be responsible. Strict and standardized management of data information generated by the intranet of our bureau.

In addition, our bureau organizes relevant computer security technical training on a global scale every year. Comrades at the computing station also actively participated in computer security technical training such as the Municipal Information Office, which improved the skills and awareness of network maintenance and security protection and effectively guaranteed the normal operation of the statistical information network in our region.

Fourth, the shortcomings of network security and corrective measures

At present, there are still the following shortcomings in the network security of our bureau: First, the awareness of security prevention is relatively weak; Second, the virus monitoring ability needs to be improved; Third, unexpected events such as malicious attacks and computer virus attacks are not handled in time.

In view of the current deficiencies in the network security of our bureau, the following rectification measures are put forward:

1, strengthen the training of computer operation technology and network security technology in our bureau, and strengthen the awareness of computer operators on network viruses and information security;

2. Strengthen the study of computer technology and network technology by comrades in the computer station of our bureau, and constantly improve the technical level of computer professionals in our bureau.

Network Security Self-inspection Report Part III

According to the requirements of the Notice of the County Government Office on Carrying out the 20-year Inspection of Network and Information Security in Key Areas of the County, the self-inspection of network and information security of our bureau is hereby notified as follows: 1. Organize self-inspection of network and information security.

Our bureau attaches great importance to the inspection of network information security, has set up a special leading group, established and improved the responsibility system for network security and confidentiality and related rules and regulations, which are managed by the bureau office in a unified way, and all departments are responsible for their own network information security work. Strictly implement the provisions on network information security and confidentiality, and conduct self-inspection on all computers, networks and information security in the bureau. On the whole, the network information security and confidentiality work of our bureau has been done in a solid and effective way, and no leakage problem has been found.

Two. Information security work

1. Information system security should implement the system of leadership approval and signature. Any information uploaded to the website must be reviewed and signed by relevant leaders before uploading; And regularly carry out security checks, mainly on weak password, anti-virus software installation and upgrade, Trojan virus detection system management authority, access authority, etc.

2. In daily management, we should earnestly manage the extranet, website and application software, strictly implement "confidential computers are not connected to the Internet, and computers connected to the Internet are not classified", and manage, maintain and destroy CDs, hard disks, USB flash drives and mobile hard disks in strict accordance with confidentiality requirements.

3. The hardware equipment is used reasonably, the software setting is standardized, and the equipment is in good running condition. Every terminal in our bureau has installed anti-virus software, and the application of system-related equipment has also been standardized and managed. The use of hardware equipment conforms to the relevant national product quality and safety regulations, and there is no potential safety hazard.

4. The safe use of website information meets the requirements. A system related to network information security has been formulated, requiring the uploaded contents provided by various departments and units of the government to be submitted to the bureau after being reviewed by the heads of various departments and units, and uploaded after being approved by relevant management personnel and competent leaders of the bureau; The main contents are released and uploaded after reporting to the main leaders of the bureau, which is used as the internal control system of the bureau's computer network to ensure the confidentiality of website information. When uploading, use a password lock with exclusive permission to log in to the background. The uploaded file will be detected for pathogens in advance, and the person in charge will be responsible.

Three. Analysis of main problems and threats

1. Main problems and weak links found. First, the relevant system is not perfect; Second, some cadres and workers pay insufficient attention to network and information security; Third, security infrastructure and basic work need to be strengthened. Fourth, there is a lack of full-time computer and network staff.

2. Security threats and risks. With the continuous development of computer network, global informatization has had a great and far-reaching impact on society. However, at the same time, due to the diversity, imbalance, openness and interconnection of computer networks, computer networks are easily attacked by viruses, hackers, malicious software and other illegal acts, so network security and information confidentiality have become crucial issues.

3. Basic judgment on the overall security situation

Although our bureau has achieved civil air defense and technical defense in terms of network and information security, there is a large amount of information exchange between departments at present, and staff often send information through internet e-mail or personal e-mail, which is easy to be attacked and intercepted by malicious software, resulting in hidden dangers in information security.

Fourth, improvement measures and rectification results

1. Improvement measures: First, strengthen organizational leadership to ensure that leadership, tasks and responsibilities are in place. The second is to establish a healthy network and information security management system. The third is to strengthen education and training and raise awareness. The fourth is to further standardize the use of mobile media. When installing anti-virus software, all departments basically use the anti-virus software approved by the national competent department to kill viruses in time, and do not use unknown software, floppy disks, CD-ROMs, USB flash drives and other carriers. And don't visit illegal websites, and consciously strictly control and block the source of the virus. When computer equipment is sent for maintenance, a designated person will follow. When the computer is scrapped, the hard disk and other storage carriers will be removed or destroyed in time.

2. Effect of rectification: Through rectification, an information security protection system integrating technology, system, supervision and implementation has been gradually established to ensure the safety of business data, core equipment and network operation, improve the network and information security protection capability, and ensure the safe and stable operation of information work.