臺北國際會議中心 & 世貿一館 2 樓
Cyber Security Framework - Secure Network and Segmentation/ Zone Security
Cybersecurity Management Framework
The design of the Cybersecurity Management Framework (CMF) assumes cybersecurity management is a business function. The framework, as a business function, requires three discrete layers with each subsequent layer unfolding increasing levels of specificity as follows:
Strategy is to initiate and drive the framework forward to operation.
-- Requires people to identify the need for cybersecurity, consider the business issues, and then define, document, and publish the direction the required cybersecurity management program will adopt.
Operational focus defines what the cybersecurity management program must address to comply with the requirements specified in the strategy.
-- Requires definitions of documented operational standards, processes, procedures, and other collateral that specify what operators should do and how they should do it.
Tactical security controls address specific requirements articulated in the operational documentation.
-- These security controls, whether requiring technology or not, are responsible for securing all aspects of an enterprise computing environment, continuously monitoring the environment for security events, collecting and analyzing captured events, and reporting defined security metrics, some of which are provided to the SLT.
任職於專業服務機構。負責專案管理、整合服務以及各式各樣的資安服務。25 年以上資安專業經驗，涉略各種平台與服務議題。具備多元技能與豐富經驗，能勝任各式職務。IT 服務經驗主要為提供機構單位資訊服務或安全架構的相關服務，以及協助機構單位符合客戶端的法遵要求。