The safety and reliability of the industrial Internet level is the foundation of Express 100. Since its establishment, Express 100 has always attached great importance to network security construction and continuous improvement to escort the overall security while constantly innovating and iterating its own information technology. In July this year, the IT & Process Department formulated the 2023 Graded Protection Assessment Plan, which was reviewed by the Manager's MeetingIn September, the IT and Process Department held a kick-off meeting for the evaluation of classified protection, and relevant colleagues from the production and research center, the operation middle office, and the IT and process department participated in the whole process to understand the implementation plan. On November 21, Qianhai Baidi officially passed the "National Information System Security Graded Protection Assessment", which is also the sixth consecutive year since 2018.
Complete the certification of classified protectionEscort for safe development
(1) Grading filing
The IT and Process Department and the evaluation agency combed the system use, detailed functions and network topology diagram in detail, analyzed and discussed the importance of the system business information and system services, the object infringed when the system service was damaged and the degree of damage to the object, and then organized experts to hold an expert review meeting, and finally passed the system level and system name change review on September 26, 2023, wrote a rating report and filed it with the network security department. 
(2) On-site evaluation
In October 2023, the evaluation agency will arrange an expert group to settle in our company for on-site inspection and conduct an on-site inspection of the systemNetwork equipment, security equipment, host equipment, application software, management system documentsand other types of objects for testing and evaluation, and compare them with classified protection 20 standards, case verification test, vulnerability scanning test, penetration test, analysis of potential vulnerabilities in network equipment, operating system, database.
(3) Gap analysis and rectification
The IT and process department cooperates with the evaluation agency to analyze the gap between the security protection status of the existing system and the requirements of classified protection, and summarizes and grades the risks according to the possibility of security incidents caused by the lack of security protection capabilities of the information system and the impact of security incidents on the security of the information system, and forms a gap analysis report. On this basis, the IT and process department checks and fills in the gaps at all levels of risk points, including optimizing the network structure, rectifying equipment configuration, repairing security vulnerabilities, etc., strengthening system construction, standardizing and improving the management mechanism.
(4) Report preparation
In accordance with DJCP 20 requirements, the IT and process department strictly implements the evaluation implementation manual, compares and judges the evaluation results of each unit in combination with the best standards, and then summarizes the individual evaluation results, lists them one by one in the form of **, and jointly prepares the evaluation report with the evaluation agency and submits it to the network security department for review. 
**DJEPO provides customers with more reliable network security servicesOn November 21, the company officially passed the "National Information System Security Graded Protection Evaluation", which isThe highest level of information security certification that a non-bank financial institution can obtainIt means that Qianhai Baidi Express Logistics Information Cloud Service Platform (Express 100 and Baidi Cloud) is in the assessment of dozens of dimensions such as network security, data security, application security, system construction management, and security management systemAll of them have reached national standards
withQianhai Baidi Express Logistics Information Cloud Service Platform (Express 100 and Baidi Cloud) classified protection evaluation was successfully completedIn the future, we will continue to build network security to provide three-dimensional and in-depth security for the company's business system. On this basis, the IT and process department will continue to broaden its thinking, encourage the application of new technologies, strengthen communication and cooperation with high-tech enterprises, improve the all-weather and all-round information security guarantee system, enhance network security perception and early warning capabilities, and escort the company's network information security.