Research On Information Security Management Of S Company's Cloud Service

By the end of 2018,the number of Internet users in China had exceeded 8 billion,internet penetration exceeded 58 percent and the proportion of Internet users using online shopping and mobile payments had exceeded 70 per cent.The Internet economy scale index in China has become the world's first,so the network ecology needs to build on the guarantee of network basic service and network security service.But new technologies come with new risks,as new information technologies such as big data,cloud services and the Internet of things are widely promoted,For many enterprises serving the basic Internet business in our country,the rapid and effective construction of information security management system based on the new network service mode has become an important part of the national network security strategy.The theoretical research part of this paper takes system theory as the core thinking,barrel theory as the safeguard method,PDCA cycle theory as the propulsion tool.Firstly,the security framework of enterprise information security management in cloud service environment is studied by analyzing the characteristics and risks of cloud service development.The relationship between cloud security and information security level protection is discussed.The hierarchy protection system is the legal benchmark of network security in China,The standard of class protection system is developing with the new threat of network security.The standard of cloud level protection is defined by combing the new technology of cloud computing standard development of class protection system.It is suggested that cloud level protection is an ideal way to guide the management of cloud service information security.Finally,guided by theoretical research,the paper applies the standard of Cloud Level Protection to guide the improvement of the cloud service information security management in S company.After the improvement plan was implemented,the Cloud Service System of S Company passed the level three evaluation of information security protection,It has solved the security problem and development challenge of S Company cloud service successfully,promoted the information security management ability and guarantee level of S Company cloud service effectively,also met the compliance requirements of the national network security policy at the same time.I hope the successful case of new problem solving based on new standard can provide reference and reference for other enterprises to practice cloud service safety management.