T Company IDC Information Security Management Research

"Big data", "Internet +" and so on a series of government guidance policy, unceasingly actuation and speed up the process of our information, so that the data center industry of the rise of violent.Rapid growth will inevitably accompanied by a variety of hidden dangers and problems, is today's enterprise information security and at present, the security of enterprise information, the public interest of the focus.How about the information security management of enterprise data center project to carry on the reasonable positioning, how to make the information security management and daily business and perfect fit, how to ensure information security management steady play its proper role, and even in the face from internal and external threat, active or passive, can reasonable to carry out the supervision and control have become the important work of enterprise operation center during the project operation.T company as a subsidiary of the HK group set up in Dalian, due to the group and its geographical environment, the actual risk is different, lead to get attention in the process of information security management degree is insufficient, lack of complete and unified control system.This paper will be based on the ISO27001 information security management system of T company's information security management is studied.In the existing information security situation to conduct a comprehensive analysis on the company, through comprehensive build an unused information security control system, to actualize the notion of information security management from macroscopic level to the line field aspects of the business process.At the same time, combining with the content of every link of PDCA cycle model, from the physical security, personnel security, software and application system, safe operation of equipment, the safeguard measures of several aspects, such as, adopt different strategies and technical support, review and continuous improvement plan formulation, the information security management in order to achieve the good of all angles, multilevel, the results.In this paper, based on the research of the T company information security management, and other similar projects for the data center industry provides a good information security management practice case, has the high reference value.