How Do I Become an Information Security Officer?

International and domestic discussions on information security are roughly divided into two categories: one refers to the security of specific information security technology systems; the other refers to the security of certain specific information systems (such as banking systems and military command systems) . However, some people think that neither of these two definitions can fully summarize the issue of information security.

Enterprise Information Security

Chinese name: Enterprise Information Security
Basic content 1: Physical security

Basic content 2: Operational safety
Basic content 3: Information asset security

Natural disasters, also called "force majeure" disasters, usually refer to natural disasters that are relentless. However, as technology becomes more and more developed today, companies may face another "natural disaster", which is information security threats.

The emergence of the Internet in the late 1990s marked the entry of human society

Virus trojan,

Enterprise Information Security Thin Client

Centralized process, localized information

Thin clients have long been adopted by the Zero Trust plan strategy, which concentrates a lot of technology. Like streaming media server, web hosting desktop technology and virtual workplace technology. In order to strengthen its security, sensitive data must be concentrated in devices with better security performance. Remote devices can only access data through the thin client terminal application. Because it needs to be connected to the network here, the thin client does not support offline use.

Enterprise Information Security Thin Devices

For device security reasons, use backup data

Thin device mode controls access by limiting the types of devices allowed to access data. Devices such as smartphones can only store a certain amount of sensitive information. The information they store is copied, and the original data is stored in the data center. Due to their size, storage capacity, and processing speed limitations, applications are confined to e-mail, small-scale browsing of web pages, and simple web programs, not to mention ordinary data processing at all. In the thin device model, the IT security team can still control the security of the device, even if they do not own the device.

Enterprise Information Security Process Protection

Handling local information in a secure environment

In the thin client mode, the user device does not store sensitive information, but the process protection mode is different. It allows data to run on non-IT-owned devices. Sensitive information in an independent process environment, that is, separated from the user's local operating system environment-basically a "bubble"-where security and backup performance are controlled by IT. The process protection mode has many advantages: local execution, offline operation, central management, and a high-precision security control, including remote wipe capabilities.

Enterprise Information Security Data Protection

Document self-protection regardless of location

Whereas previous models have managed to process information by controlling the operating environment, the data protection model protects the data itself. Technologies such as Enterprise Rights Management (ERM) provide direct access to file rules. Regardless of where the files are placed, these rules that rely on password enforcement are applicable, which is an important advantage. All the models in the Zero Trust data security strategy protect data in the finest and most effective way, because it focuses on information, not the carrier of information.

One of the disadvantages of this model is that each terminal of the ERM requires a client agent.

Enterprise Information Security Tracking

Identify when important information is removed

The fifth model of Zero Trust data security design uses complementary data detection and control technology to detect, record, and selectively block sensitive data at physical or logical enterprise boundaries. Data leakage prevention (DLP) technology and, to a lesser extent, security information and event management (SIEM) tools, are important components of this model. ^[5]