                          ==Ph4nt0m Security Team==
 
                       Issue 0x02, Phile #0x03 of 0x0A
 

|=---------------------------------------------------------------------------=|
|=---------------------------=[ CSO ]=-----------------------------=|
|=---------------------------------------------------------------------------=|
|=---------------------------------------------------------------------------=|
|=--------------------=[           By ayazero          ]=--------------------=|
|=--------------------=[    <ay4z3ro_at_hotmail.com>   ]=--------------------=|
|=---------------------------------------------------------------------------=|


    ҪԱļԱʵο

ӣ

    żһƪ¡2008Ԥ⼼CIOʧҵСԤָ2008Щרע
ITӪͳɱüCIO˵һת۵㣬CIO֤Ϊҵļֵ
ͻᱻ乬滹ָCIOͷ""УȴսԹ
ҵӪˡʡ˼ʹϵһ֪⣬ⶼٱ̭Сҵķ
չͳ CIOѾ޷ʤθ߲һֱֻרעڼĽɫս
ԻĽɫʾCIOѾʤθ߲λҴͳCIOͨһ
ҪĹǶԹ˾Ӫ״͹Ĳ˽⣬ʹITֻΪһϢ
ģǹϢġʵϣֻҵϣ֮أ
ֻܵ±쳵ҵʱٺõļҲͽ档

    ʵϣһλITרźһϸCIO֮Ǵž޴Ĳ𣬼͹
ȫ򣺹ˡ;ھ⡢׷;ۡϸ
ڡһITԱʹзĿITžҪΪڲ
гCIOͱı˼άоֹĥһ˵ͳ
CIO¼Խϰ

    (1) ֻעҵ֪ʶխ
    (2) ŶЭ
    (3) ˼ʹͨЭ
    (4) Ӣ°

    ʵΪһCSOϺCIOһģڸ˶Ҫǽ˼룬̲
Է⡣漰ǹԱ뿼ǵģǼԱԽģ־ڽһ
ҪġЩǡǡáľͲÿЩˡ

    ΪCSOҪּܣǻۡCobitITIL7799һѰȫ׼
Ȼվ˹άȣΪһѯӦǿˣǶCSO˵ǾԲģ
㻹Ҫһǻۡι֮Ҳ˵ǻ۲ᳫΡǵ
Ŀ϶Ҫһгķƻǰȫ׼ķƻ
ĽƶҪǻۣڡϢȫְҵġԣȫ
׼ԡȶԼ򵥵飬֯гɹչEQ
ڵҵԸˣλҪCSOָ̡ϰϢ
ȫΪʯ·㱾ʹˣΪûΪ·ֻе
ġ顱ǳҪʱŻΪṩԴ

    1.ΪʲôϢȫ

    һ̸̫⣬ҾӦóһԼϰ塣Ϊʲôƽʱһ
ܹشһǰʾ޶ԣţһΪû
ҪҽķͬһʱĲЧġMBAĽ̿鰸У
ҵΣͨԴսѡṹ⣬Ϣȫûн߲ǵ
ҰʵвϢȫĲõҵȻͶ׷ֵķʦ
߼룬Ϊǿǲ񱨱ITƱ档ϢȫȻҪͨ
սԡһ֮˵ȫҪ̶ܴΪԼ
ȫģ۹ǵ֪ʶϵṹǲǰȫռأΪ˫ϢԳƣӵ㲻
ƣ˼άʽԽӣʹڹ۵ӪĹдơ

    ϢȫȷʵҪ˵ǱزٵģΪCSOְڡ

    սȺ壬һ֮˵߲߶CSO֪ʶ˵һ
ܴսCSOںӦǶΡάȵġʵϣϰԻ˵ȫҪ
ЩȫǷչ֪ʶǺ~

    һ棬Ҫ˵ȫ£Ҫеķ档ֻ
Űȫ˵Ѿ˼άơ

    סCSOֻCSO

    ǿЩǼ滹ûͻͿʼˣЩ
ѣȻ㶫Ϊˡ⡱

    ˵һҪ⣺ĵĽǶȲԣҲ㻻λ˼ˣǿǵĻ
֪ǧ֮һĿƣǿġ

    Ҫ⣬ҪԼ֪ʶάȺͶƽǨƣʱ
ԿһЩӪ飬ܵϤ˾ҵ񣬶࿴һЩʦͶߣרҶԱ
ҵۣԼAQ֪˾ϰҵѹʲô֪ǵʹ
ܶʱ̨һʲôߣȥһʲôԣдʲôĵֻǱ󣬱
εԭŲʰԼԲ쳵EQ
ܵһ̶ȣȻԨ֪ǳһ֪

    2.ǿƵ

    ˷ǿƵĲƶ,һʽСᲢ,Ϊ̫ǿ˷
вһƳȥʱ򣬵ˬʱһкܶ˲ˬо仰Сˮ
㡱ϺݺʹһȭԼҲʹġǿƵĲƶԴһ
ΪаȫԾǺģ˶ǲȫĵͣӦץ˴PPʵǱ
λı֣ûЩҵŻôҵأЩĽǶ
ǶԵģӱ˵ĽǶδǶԵġҵһҪдֹۡǵĿ
Ҫʵֹɶ󻯣ʱӦʵСЭáΪʲôҪˣΪ
ܶ˶ϢȫӰֲͳһȻֻʣơ

    磺ڻϣҪڱﰲȫԵľݣӦҵŵġɧ
ǵɧԭ򣬴ӶͨԵʽʱеĲļУҪǳע
ʣڷʼǰҪϸãҪѡ족һҪվĶߵĦһ¶Է
ƲԾ̣ͨҪԼ̿Ͽǰȫְ˾ҵƲԣ
Ʋԡ

    3.Ƶ

    CSOȱǻۣŶӱضƣ̸Щֵˡ

    4.ơ

    ӱԻתԲʯǧ֮ɽߣҲ˽ƣ½ơվڸɽϣơ
ʱûվôߣʹƽϣǧ֮ԨҲȻơϢȫ¼/
ǲԸ⿴ģȻһ棬ؿǿԴⷢӵĻᡣ
˳ȥʱڸɽ֮ϣ˾ͳǧ֮Ԩµ㡣⣬ԼҪ
ҪѺپܶ飬Լһ˼ʽñҲһ
˼ʽϾͱˣȨȨ䣬ͨٱͨղǧﳤˮ
ӿܷվ˼ȡǷͺ˵ս
ŰܡָĳˡŰս~һֶ΢ͨһ½ȫһˣ

    磺ȫ¼ʱΪİʾˡ̡ϵһϵ⣬Լ
ԴĲ㡣ڹؼ¼Ӧ֮׳һBCPҵԼƻ̣Щ
ǵһ׳ϾͻᱻܵģӶڶΡΡԷĸʶҲи
̡

    5.ӹ

    ӹӦǾˣǱᳫ·ʽӹǡǡôгԲ
ڣƫСЭúͺصĴʡӹӦҵϢȫ
չʱӹͳԽCSOʵӹǷϷչ۵ģ
ճеͼֵĹϵǳ̬߷ֲģеߵķգ͵ķգĿ
ӶӰӯЧʣǲǡġǡܸˣάʵծԼ˰Ӷɶֵ
ܵ˵ӦУԭΪóʱҲʲã

    磬ֻȫҵʱҩǡġأһҪϤҵ
ӦǵĲԳʱѾ֪ơӪڲӰ죬
ֹ۲ġԸġ⣬ҵŶISMSķ
ſԽԽǡôԲֻǹͨʽҪͨݸҪ

    6.

    ѭISMSı׼һ̫׵飬һҪ
ҲISMSҪǩ𷢲ϢȫļԭֻǵĿļǲġ
·ʽϣˮضϰĴɽȥɱСѸ
ˡǣԲˬΪϰվԼĽǶҪ׷Ҳǡƽ⡱вһ
С¾ϰƣĻԵܡá

    ע⣺õǡǡЮвͨģһ
кܴķá

    ˵ϴԡǡơĿĶһģչġͬԡñ˵˼
άʽ˳Ӧġģ͡ŷԻ˼ά̡ҿ
ѵԶȸͨԱѵҪΪҵֻ϶µġӪǿ
ģֻ֮ġ

    7.ؼҵ

    ΪϢȫļֵǵĹҪؼҵ󶨣·ػ
Ӧãͣڱƽ̨İȫûмֵģOSݿ⣬ȵֻҵĳý
飬ֻITʩǲҵҪϢݣҲϢȫǰ
ֵĺ塣ϢԼڹʲô

    8.ITǶ˵̺ͶԼļܹ

    ֮ǰ˵ITInformation TechnologyһϴʣϢ+ϵͳݿ⡢
ЩTڼƽֻ̨ЩôдΧֻеᴩҵڲļ
ֵϲҵϵϢȫʱϢȫſܱᵽսԸ߶ȣ
ȫһıԵְܡ򵥵Ϣȫ=ˣȨ)+£̣
򣬲ָϣ+׼ԣڰ칫۾˾Ӫҵ
򣨰ʱ򣬾еġȫҵġϢ


    9.ṹΪΣҪͨ

    Ϣȫĺģһѱ׼Ǽ򵥵飬ùԱȥѭ
ѭһ죬ǳԾѭѵ顣ܣЧָ꣬ˣò
ڰȫ֮⣬ȴǻ㾦֮ʡǱ䡰ΡΪΡĹؼ

    ¾֮ܣо֮Ͼ֮ǡ

    Ϊ˹ΪȷľȨεܡ֮ȷ
Ȩ𣬽Чˣ֯еĳԱԾdriveԼӦprocessṹƺ󷽿ɳ
Ϊ徲ΪϾ

    ⻹꣬κηζڡ顱֮κϵҪϵPDCA
ƣЩطҪͨģͨΪˣСԷΪ
ǹе©

    һοܱȽ£ʵƪԭûôҲû磬Ӧĳ˵Ҫ
˲ٽԵݡڷε⣬ΪҵķɣطķɣΪ˾
ҵ֯ھͱΪһϵѧƳƶȡ̵ȡеİȫ׼У
CobitһҪquickstartԽһҪץʣҪȥѧ


    10.ϵ

    ҪôǳҪʽⲢҪǵҪ,Ƹһ
ʵļǷǳʵ⡣ӹάȿκμֻʵֶΣ
ֻselectһ֡ͼʱӦȴӹĽǶȥΪ
ıǹ⡣ִеʱӦָļӽǣϵлӽǣ
任άȲ֯Сеĸࡣ

    CSOʵһɹḶ́ҪѡԵġ飬Ȼǰ
áʲô鶼ҪЩ鿴ǡԵġضĽ׶ξͲӦȥ
Щ飬Ч΢ȴִзͽìܣֺãͲҪȫ
ӦFollowҵġ״вһȡ

    һЩԼ̨ˣؼʱԼڹ
䵱ġɫ

    ֮࣬ڼִв棬׼̣ͨģͣ·ʽǱȽҪġ

    ҵﲻνġաCSOֻ㵥ķԣд̣
д׼ô򵥣Ļ˶ܵCSOˡ

    ʵϢȫļܲڰȫе⡰CSOֻCSO
仰ʱ㽫ѾûСޡ

    ڡ󽣡áΪÿġ
һ֪߽Զɡ

-EOF-