Upload
-galaxy-software-services
View
80
Download
1
Embed Size (px)
Citation preview
2
3T SLIQPGLK 6aM
1 so管理 & 側錄軟體
3 權限管理
4 服c管理
) 資產Tg約T廠商
1 p案管理te
& 軟體開發te 3 軟體i質管理 4 端對端行為分析
1 操作自動d & 批次自動d 3 資料/檔案交zte 4 te監y軟體 ) 資料u管理r具
6 網路軟體與管理
1 防資料洩露 & APT 3 虛擬機n全
4 資料u監y防護 ) 資料 ao/變造 6 ao/金鑰管理
PCLMIC 6aKaECmCKP
3KDNaOPNQAPQNC 6aKaECmCKP
3KDLNmaPGLK 6aKaECmCKP
AP 6aKaECmCKP
歷f紀錄/l表/稽核
S01 S3
S PIaPDLNm BYO./APP. SaaS/-ILQB
健檢/訓練 1 資n檢測 & 教育訓練 3 /-5CaNKGKE課程
1 顧k & 健檢 3 訓練 4 p案
文管/SOP/46
服c
4
��"
%-�(����� �+#
��#�" ��$
/�#�����!�
�,*���$
/.����&
�� ��
���"
/.��
�#%-�(�, +
� )�&-$
����&-�'�
岩崎 弥太郎三菱財閥歴代総帥
7
WK21_HCDRN �PT6
■ G�RN �P�0����RN �P�0a?k�■ �O!3M�■ f�3M�/� �E�/�
( ( .[�"
@O!���I�#JX!���O!�
■ g�3M\89,�Z��. �&b^>UN�)`%
LUN�eVFO!,�. �&$d��
■ h�3MCD��]� ���*�7��������� )) ( ) �:4#JB<��
■ i�3M�0CD�\5Sc�T�Sc�(=Sc
��������A�-+O!�-+;'��■ j�3MWY��� Q2�I��*����
主管機關稽核
19
Database /
ERP Call Center
l
m (B2B/B2C/B2B2C/C2C/…)
q
也
APT
WebAP
q l
USB L
XSS
SQL Injection
也
AP
Sensitive Data Exposure
Comment InjectionCross-Site
Request Forgery
Unvalidated Redirects & Forwards
Broken Authentication
Missing Function Level Access Control
Broken Session Management
C
19
Database /
ERP Call Center
l
m (B2B/B2C/B2B2C/C2C/…)
q
也
APT
WebAP
q l
USB L
XSS
SQL Injection
也
AP
Sensitive Data Exposure
Comment InjectionCross-Site
Request Forgery
Unvalidated Redirects & Forwards
Broken Authentication
Missing Function Level Access Control
Broken Session Management
Advanced Persistent
Threat
C
20
Front-end
Back-end
Data warehousingDatabase /
ERP Call Center
l
m (B2B/B2C/B2B2C/C2C/…)
GSS Information Security Solution Blueprint
20
Front-end
Back-end
Data warehousingDatabase /
ERP Call Center
l
m (B2B/B2C/B2B2C/C2C/…)
⼈人
W
GSS Information Security Solution Blueprint
26
GSS GSS GSS GSS GSS GSS GSS GSS
GSS GSS GSS GSS GSS GSS GSS GSS
GSS GSS GSS GSS GSS GSS GSS GSS
GSS GSS GSS GSS GSS GSS GSS GSS
GSS GSS GSS GSS GSS GSS GSS GSS
/Application Security
Network Security
Information Security
SIEM
Web Application Firewall
SSO
IDM
Infrastructure Security Man
aged
Sec
urit
y Se
rvic
e
1SS SCAQNGPR TLPaI SLIQPGLK
e-Learning
DB