Summary is a written material that comprehensively and systematically summarizes the achievements, existing problems, experiences and lessons gained in a period of time. It can make clear the next work direction, avoid detours and mistakes, and improve work efficiency. Let's take time to write a summary together. The following is my summary of the network security emergency drill model, welcome to read!
Summary of network security emergency drill mode Article 1 According to the spirit of the school's relevant document system, our school launched an information security emergency drill on March 25, 20 19. The work of this drill is summarized as follows:
First of all, the purpose of emergency drills is clear.
The purpose of emergency drills is to establish and improve the emergency working mechanism for network and information security operation, test the comprehensive emergency technology of network and information security, verify the organization and command ability and emergency handling ability of relevant organizations and personnel to deal with network security emergencies, and continuously improve the level and efficiency of emergency work in various offices.
Second, seriously prepare for the drill.
The school made careful arrangements for this drill, and formed a specific plan, divided the specific content of the drill, and made a specific division of labor for all the people involved in the drill. Before the drill, inform the employees in advance by means of document distribution and WeChat group notification, and fully cooperate without affecting the normal work of the school. Make sure the drill is successful.
Three. Problems found in this exercise
1, lacking actual combat experience. The relevant content has not been actually rehearsed before, only through simple learning and communication or through books and cases, and the on-site experience is insufficient.
2. During the drill, individual participants were flustered in handling accidents and lacked the ability to react quickly and calmly.
3. The emergency personnel cooperated well, but some links were omitted in the task arrangement.
According to the requirements of the General Administration of Customs, in order to improve the security emergency support capability of information systems during the Asian Games and actively respond to possible emergencies, China Customs formulated the security emergency drill plan for the Asian Games based on the security emergency plan of the customs information system. The drill plan simulates four kinds of faults: network interruption, abnormal operation of the electronic port pre-entry system, temporary power failure of the computer network room of the General Administration of Customs, and the inability of the red machine to access the website.
First, unifying thoughts and raising awareness is an important prerequisite for doing a good job in drills.
The information system security emergency drill of the Asian Games is the basic work to ensure the information security of the Asian Games. Our party group attaches great importance to it. After receiving the notice from the General Administration about the arrangement of this exercise, we immediately convened a meeting of the emergency command group of the information system, and quickly defined the overall guiding principles, program framework, participating units and exercise time of the exercise. It is emphasized that all departments participating in this drill should raise awareness, stress coordination, stress the overall situation and stress coordination. The technical department should proceed from the actual work and carefully formulate each fault drill script, so as to make the responsibilities clear, the operating procedures clear, and the tasks reach people, and complete this drill with good quality and quantity within the required time.
Two, from the actual work to develop a drill plan, so as to achieve "three clear, one implementation."
According to the spirit of the meeting between the General Administration of Customs and the China Customs Emergency Command Group, the technical department, combined with the actual work in the customs area, formulated a customs drill plan, aiming at improving the emergency capability of the customs information system, improving the coordination linkage mechanism, and finding out the effectiveness of the emergency plan of the unit and the emergency coordination plan between relevant departments.
In order to make the drill work as close to reality as possible and the faults involved in the drill plan are representative, we set up faults in the network operation, basic environmental service and business operation of h2000 system. The technical department selects the airport customs with the largest number of customs documents as the starting point of the drill, and simulates two representative types of faults on the spot. Fault 1, network interruption leads to abnormal operation of h2000; Fault 2, the electronic port pre-entry system is operating abnormally. At the same time, for the classified office network, the third fault is formulated. Red Machine cannot access the website. The key point of the fault setting is to practice the troubleshooting ability of the technical department for classified applications and the emergency handling methods of the office during this period. In view of the guarantee ability of basic environmental services, we designed the fourth fault, that is, the computer room of a general building suffered an unexpected power outage. The key point is to check the working conditions of the power supply system and air conditioner in the computer room and check the inspection log records of the equipment in the computer room.
All fault scripts involved in this exercise plan are from previous fault records. According to the special requirements of Asian Games security, our bureau formulated the responsibility system for fault handling and optimized the troubleshooting process, which mainly involved the following seven links, including fault acceptance, fault classification, fault report, business emergency plan start-up, fault alarm cancellation application, fault cause announcement and fault report analysis.
In this exercise, I made it clear that the operation process of each fault point is clear, the person in charge of each link in the process is clear, and the handling authority of emergencies in the process of fault circulation is clear. The division of labor among members of the emergency response team has been further implemented, making the responsibilities of the emergency response team more clear. "Three definitions, one implementation" effectively ensured the smooth development of security work for the Asian Games.
Third, the close cooperation and linkage of various departments is the basic guarantee for the success of this exercise.
This drill starts from 20 10, 1 1.08 and ends at 10/7: 00 on October 8. The departments participating in the drill include office, technical department, airport customs, supervision and customs clearance department, document review department, agency service center, etc. Other units involve line operators and equipment service providers.
On the afternoon of the 8th, the deputy director in charge went to the _ _ _ center to preside over the drill. During the drill, all the staff of the technical department participated seriously and cooperated closely with the participating units to successfully complete the drill task. At the same time, the drill tested the emergency coordination and communication mechanism of China's customs information system. During the drill, internal and external communication was smooth. At the first time when the fault occurs, the fault receiver can find the troubleshooting contacts in each link through the telephone book in the emergency plan of the customs information system. The efficiency of troubleshooting is greatly improved, and the losses caused by faults are reduced as much as possible.
According to the experience of this drill, our customs will further check the integrity of emergency safeguard measures and technical emergency plans for information systems. First, according to the characteristics of the information work of the Asian Games, complete the revision of the emergency plan of the customs information system and add new contents. The second is to complete the centralized classification of the existing fault problems of our customs, and clarify the process, refine the tasks, implement the tasks to people, and standardize the investigation operation according to the requirements of "Sanming is indeed implemented" mentioned in this exercise.
Model essay summary of network security emergency drill 3 According to the Measures for the Administration of Network Security in suzhou vocational university and the Emergency Plan in suzhou vocational university, in order to ensure and improve the emergency response capability of network security, our school organized a network security emergency drill at 9: 30am on June 29th, 2022. The theme of this emergency drill was "Network Terminal Threat Elimination". The drill is aimed at all communication devices (computers, tablets, mobile phones, etc.). ) connect to the campus network. The drill was organized by the school network security emergency team, and all colleges (departments) and departments of the school participated in the drill.
This emergency drill is divided into three stages: terminal threat discovery, terminal threat disposal and terminal threat removal. The emergency drill team uses technical means to scan and find the security threats of campus terminal equipment, including but not limited to virus Trojan, weak password, RootKit, port forwarding, etc. And issue threat information to corresponding colleges (departments) or departments according to the terminal ownership. The college (department) or department that receives the terminal threat information shall conduct emergency treatment according to the steps of network security incident disposal, and submit the disposal report to the emergency drill team after the disposal is completed. The emergency drill team tracks the terminal threat disposal process of the college (department) or department. After confirming the completion of the disposal, it writes the Summary Investigation Report of Cyber Security Events in suzhou vocational university (Emergency Response Drill Edition) and submits it to the Cyber Security Emergency Response Team of the school. After confirmation by the Cyber Security Emergency Response Team, it announces the end of this emergency drill.
This emergency drill has been strongly supported by the organization department (personnel department), financial department, general affairs department, library, mechanical and electrical college, business school and school of education and humanities.
Through this emergency drill, the ability of colleges (departments) and departments to deal with network security incidents has been improved, the awareness of network security prevention of faculty and staff has been enhanced, and the enforceability and effectiveness of the school network security emergency plan have also been verified.
Model essay summary of network security emergency drill 4 In order to improve the emergency working mechanism of school network and information security operation and improve the emergency handling ability of school network information security, our school organized an emergency drill of network information security attack and defense on the afternoon of July 8. The exercise was conducted by Vice President An Jin.
In this drill, the network security technicians of off-campus security vendors attacked and infiltrated the important information system of the campus network, and the school network security operation and maintenance team conducted security defense and emergency response. Emergency drills simulate hacking and tampering with the login interface of important information systems, large-scale network disconnection caused by hacking of administrative office buildings, and encryption of files by some teachers' computers by ransomware. Under the unified coordination and command of the commander-in-chief, the network security operation and maintenance team immediately notified the incident and started the emergency plan after discovering the security incident, which successfully blocked the network attack. Through this emergency drill, the emergency response ability and protection level of the school against malicious attacks on important information systems were tested, which played an important role in improving the school's network security protection ability and security guarantee level.
Amgen affirmed the effect of actual network attack and defense drills and put forward requirements:
First, to do a good job in school network security, we should not only rely on emergency drills to preset scenarios, but also be able to find problems in advance, solve problems in daily operation and maintenance, and further enhance the school's network security protection ability.
The second is to be familiar with the emergency handling process of network security, improve practical skills, ensure that schools can work independently and deal with problems in emergencies, and deal with network security emergencies quickly, smoothly and efficiently.
Third, actively do a good job in basic work such as monitoring, inspection and inspection of equipment and information assets, comprehensively improve the level of network use and protection, and provide support for the network security of the whole school.
On May 23rd, the school organized a cyber security emergency drill. According to the preset plan of the drill, at 4 pm, the personnel on duty in the network information center received a phone call from the head of the catering management department of the logistics management office saying that some consumer machines in the student canteen were offline, and immediately informed the technicians to check the real-time situation of the consumer machines through the server background immediately and turn on the offline consumption status of the terminal. At the same time, they reported the unexpected situation to the person in charge of the network information center and started the canteen operation and maintenance plan in time, assigned special personnel to rush to the student canteen quickly, investigated the cause of the unexpected failure, guided consumers to adopt an alternative operation mode, and finally eliminated the failure and resumed the system operation.
This exercise simulates the emergency response of our school's one-card system. During the whole process, from receiving the incident report to the end of emergency response, the staff completed a series of drills, such as contacting the person in charge of the post, emergency response, safety incident reporting and recording, fault repair and recovery operation and maintenance, and achieved the expected effect of emergency drills.
Through the drill, the disaster recovery backup and recovery of the data center of the campus network information system, the patrol of the background server and the emergency recovery ability in case of terminal failure were tested on the spot, and the emergency response ability in case of sudden network security incidents was tested, which further improved the emergency response level of the school to sudden network security incidents.