Network Security Management System

1、 General regulations
1. Without the approval of the network management, no one is allowed to change the topology structure, equipment layout, server and router configuration, and network (internal information platform) parameters of the network (internal information platform).
2. No one is allowed to enter unauthorized computer systems to change system information and user data.
3. No one shall use computer technology to encroach on the legitimate interests of users, and shall not produce, copy, or disseminate relevant information that disrupts the stability of the unit.
4. Each department (unit) should regularly backup their computer systems and related business data to prevent recovery in the event of a malfunction.

2、 Account Management
1. Network (internal information platform) accounts are managed in groups. And register in detail: user name, department name, password, access permissions, activation time, network (internal information platform) resource allocation, etc.
2. The network (internal information platform) administrator sets a clear password for users, and users can modify the password according to their own confidentiality. Users should set a power on password and a screen saver password for the workstation.
3. The data under the user account belongs to the user's private data, and the parties involved have storage permissions. The administrator has management and backup access permissions.
4. The network (internal information platform) administrator shall manage user accounts in accordance with relevant account management rules and be responsible for the security and confidentiality of user accounts and data.
5. Network (internal information platform) administrators must strictly abide by professional ethics and discipline, and shall not disclose any confidential information such as passwords and accounts of users.

3、 Network administrator responsibilities
1. Assist in developing a network (internal information platform) construction plan, determine network (internal information platform) security and resource sharing strategies.
2. Responsible for the maintenance and management of public network (internal information platform) entities, such as servers, switches, hubs, firewalls, gateways, distribution frames, network cables, connectors, etc.
3. Responsible for the installation, maintenance, adjustment, and update of servers and system software.
4. Responsible for network (internal information platform) account management, resource allocation, data security, and system security.
5. Monitor the operation of the network (internal information platform), adjust parameters, schedule resources, and maintain the security, stability, and smoothness of the network (internal information platform).
6. Responsible for system backup and network (internal information platform) data backup, responsible for organizing and archiving electronic data materials of various departments.
7. Maintain network (internal information platform) topology diagrams, wiring lists, equipment specifications and configuration sheets, management records, operation records, maintenance records, and other network (internal information platform) data.
8. Every year, evaluate the efficiency of the network (internal information platform) and the performance of each computer in our unit, and propose improvement measures for the structure, technology, network, and management of the network (internal information platform).

4、 Safety management responsibilities
1. Ensure smooth network (internal information platform) and information security.
2. Strictly abide by relevant laws and administrative regulations formulated by the country, province, and city, strictly implement the Cybersecurity Work System, prioritize people, manage according to law, and ensure the security and order of the network (internal information platform).
3. When a major emergency occurs on the network (internal information platform), it should be reported immediately, emergency measures should be taken, and the normal operation of the network (internal information platform) should be restored as soon as possible.
4. Make full use of existing security equipment and software to prevent computer virus intrusion and hacker attacks to the maximum extent possible.
5. Strengthen information review work, save and backup network information logs for at least 90 days, analyze them in a timely manner, identify unstable factors, and prevent the spread of yellow and reactionary information.
6. Regularly check the fire and theft prevention work in the working environment of the network (internal information platform).

5、 Virus prevention and control management system
1. No one is allowed to create and spread any computer viruses online, and no one is allowed to intentionally introduce viruses. Network (internal information platform) users who discover viruses should immediately report to the network administrator. Network administrators provide timely guidance and assistance in dealing with viruses.
2. Each department should regularly check for viruses (with a cycle of one week or 10 days). Administrators should promptly upgrade the virus database and remind each department to upgrade the antivirus software online.