伴随全球化经济快速发展,企业信息化建设也日渐加强。而信息系统的安全管理又是信息化建设的重要保障,因此对企业进行合理的信息安全规划尤为重要。本文分析企业信息安全存在的问题与挑战,对企业信息安全建设风险进行了概述,结合企业相应的网络环境,分析出一套网络环境下企业信息安全规划方案并对企业信息安全建设提出了自己的建议。建设中对互联网接入模式、防火墙访问控制、身份系统认证、入侵检测、网络设备服务器及网络安全人员安全意识教育等多方面进行了考虑,提高了企业内部数据及资料的安全性,为企业和社会经济的可持续发展提供了保障。企业依据提出的企业信息安全整体方案架设了TDA预警系统,有效解决了该企业信息化建设推进过程中信息安全问题。 With the rapid development of global economy, the construction of enterprise information has also been strengthened. The safety management of information systems is an important guarantee for the construction of informatization. Therefore, it is particularly important for enterprises to carry out reasonable information security planning. This paper analyzes the problems and challenges in the enterprise information security, summarizes the risks of the enterprise information security construction, and combines with the corresponding network environment of the enterprise, analyzes a set of enterprise information security planning programs in the network environment and puts forward its own Suggest. The construction of the Internet access mode, firewall access control, authentication of identity systems, intrusion detection, network equipment and network security personnel security awareness education and other aspects have been considered to improve the security of internal data and information for enterprises and Social and economic sustainable development has provided a guarantee. The enterprise set up an early warning system for TDA based on the proposed overall plan for enterprise information security, which effectively solved the information security problem in the process of promoting the enterprise information construction.