安全管理不只是网络管理员日常从事的管理概念,而是在明确的安全策略指导下,依据国家或行业制定的安全标准和规范,由专门的安全管理员来实施。因此,网络安全管理的主要任务就是制定安全策略并贯彻实施。制定安全策略主要是依据国家标准,结合本单位的实际情况确定所需的安全等级,然后根据安全等级的要求确定安全技术措施和实施步骤。同时,制定有关人员的职责和和网络使用的管理条理,并定期检查执行情况,对出现的安全问题进行记录和处理。 Security management is not just the management concept that network administrators are engaged in daily. Rather, it is implemented by a dedicated security administrator under the guidance of a clear security policy and according to the security standards and norms set by the state or industry. Therefore, the main task of network security management is to develop security strategy and implement it. The formulation of safety strategy is mainly based on national standards, combined with the actual situation of the unit to determine the required level of security, and then determine the safety level of technical measures and implementation steps. At the same time, it formulates the duties and responsibilities of the personnel involved and the management rules governing the use of the Internet, and regularly checks the implementation and records and handles the security problems that have arisen.