Summit review | baowanda - an integrated data security protection system driven by compliance and security

2022 year 6 month 28、29 Japan , The China Academy of information and communications and the China Communications Standardization Association held a meeting in Beijing 2022 Big data industry summit . On the sub forum of data security , Liu Xianfeng, vice president of Jiangsu baowangda Software Technology Co., Ltd The theme is 《 Build an overall data security protection system driven by compliance and security 》 The share of .

Data security strategy rises to national security strategy

2021 The Political Bureau of the CPC Central Committee deliberated and approved 《 National security strategy （2021－2025 year ）》, Juxtapose data security and network security , The strategic position of data security has been clarified from the top-level will of the country , The 14th five year plan also makes key requirements for data security , Data security has been written into the government work report for two consecutive years .

6 month 22 Japan , At the meeting on deepening reform, the general secretary also stressed the need to improve the data whole process compliance and regulatory rule system , Security should run through the whole process of data governance , Clarify the regulatory red line , Compaction enterprise data security responsibility . The data security industry has become highly valued by the state , Regulation is becoming increasingly strict , Has a good growth trend , Industries that also face many problems and challenges . As data security rises to the national strategic level , Data security related laws, regulations and regulatory policies have also been intensively introduced .

Main problems in data security management of enterprises ：

With the continuous strengthening of national regulatory requirements and changes in external risks , The customer's original safety system has not fully adapted to the new requirements , Facing new problems , Specifically, ：（1） How to unify the security system to meet the needs of multiple departments 、 Multiple laws , Compliance requirements of multiple standards （2） The original single point protection means can not guarantee safety , It can't meet the problem of compliance （3） How the original network security system and the new data security system are compatible and coordinated （4） Based on the basic characteristics of data flow , How to implement dynamic defense and dynamic operation （5） Too much data and too many systems , How to systematically carry out data security governance .

Baowangda “ Compliance and safety double drive ” Data security overall protection system

In view of the development trend of data security industry and the current problems faced by enterprises , Baowangda is based on more than ten years of practical experience in the data security industry , To build the “ Compliance and safety double drive ” Data security overall protection system .“ Dual drive system ” The starting point of is not only the growth of the enterprise itself , Pay more attention to the benign development of the overall data security environment .

At the same time, baowangda launched an innovative panorama of data security system driven by compliance and security - Ark platform . The ark platform contains three goals, five systems, eight scenes and fifteen data security products for data security , Products support cloud based architecture 、 Pooling and atomization , That is, it can be provided to customers as an overall platform , Some sub platform capabilities can also be provided according to the current situation and requirements of customers , And well adapt and integrate with the original platform of customers . Part of the concept of dual drive system is proposed for the first time in the data security industry , It has aroused enthusiastic response in the industry .

Construction of data security compliance system

The data security compliance system is based on PDCA The model is divided into eight steps ： Follow up and interpretation of laws, regulations and regulatory policies - Compliance work planning and task decomposition - Compliance assessment - Compliance capacity building - Compliance check - Compliance analysis and continuous improvement - Report and complaint management - Regulatory data reporting . Among them, there are two things that need enterprises to focus on , One is ： Report and complaint management , It is very easy to be ignored in the daily data security management of enterprises , Both internal and external departments need to establish publicity, reporting and complaint channels and maintain smooth channels . Two is ： Regulatory data reporting , At present, in the process of enterprise operation , There are more and more requirements for long regulatory data , Centralized management of regulatory data is needed , And pay attention to the multi caliber verification of various data .

A case of the implementation of the integrated data security protection system driven by both compliance and security

Take an operator as an example , Through baowangda “ An overall data security protection system driven by compliance and security ” Implementation and landing of , Shared in the enterprise 70 Multiple business systems ,400 Multiple databases ,4 More than ten thousand tables , Sensitive table 1 More than ten thousand , Daily monitoring of main data flow 90 many G, Daily discovery risk 100 Bar or so .

After a preliminary assessment , Meet the requirements of national and industrial competent departments on control points and assessment points of data security supervision and compliance , It has achieved the double goals of data security compliance and risk protection , And can dynamically operate and continuously improve based on the overall system .

Baowangda has built a double driven data security overall protection system based on more than ten years of data security industry practice , While creating value for customers, it also gains the recognition of customers and peer experts .

Create a safer digital future

Baowangda will respond to the national call , Comply with regulatory guidelines , Focus on specialized and new research and development , Focus on Collaborative supporting capabilities , Build a financing innovation ecosystem with industry partners , Support the industrial upgrading of Suan , Together to create a safer digital future .

Release |2022 Ten key words of big data

Open a new chapter in digital intelligence ——2022 The big data industry summit was held in Beijing

About us

      Big data technology standards Promotion Committee of China Communications Standardization Association （CCSA TC601, abbreviation ： Data standard committee /BDC）, It aims to condense all links of the industrial chain , Identify and solve major problems faced by the development of big data , Develop big data technology 、 Data asset management 、 Data sharing and circulation 、 Research on common basic standards such as data security , Take the promotion of standards as the link , Promote the deep integration of big data and real economy . Welcome to join us ！

      Membership consultation ： Bai Zhimeng    13520285502

  [email protected]