On the Information Security and Secret Management of "going out" Operation of Financial institutions.

In 2013, after China put forward the "Belt and Road Initiative" initiative, it became a consensus to build a community with a shared future for mankind. Countries and regions along the "Belt and Road Initiative" route responded one after another and took the initiative to seize this rare opportunity in order to change the appearance of their domestic backward economy and help the economy take off.

All kinds of economic entities in China have also responded to the call of the state and made great strides abroad, and Chinese enterprises have blossomed everywhere in the countries along the "Belt and Road Initiative" route.

With the pace of enterprises "going out", all kinds of financial institutions in China have also set up sites abroad, and their international operations are in full swing and have achieved higher-than-expected business performance.

With the acceleration of the "going out" operation of financial institutions, the number of bank staff expatriates is increasing, and the tasks of outbound personnel training, customer visits, business guidance, audit inspection and so on are becoming more and more onerous.

This poses a severe challenge to the secrecy of information security.

However, in the management of foreign-related security work, there are many shortcomings in many enterprises and institutions.

Problems in Foreign secrecy of Information Security of Financial institutions.

First, the sense of secrecy is not strong.

When setting up overseas branches, many financial institutions consider more about business operation, personnel management, internal control, legal compliance and other aspects of operation and management, and the work of information security and secrecy is not included in the initial overall planning.

Second, overseas secrecy education is a mere formality.

As for the secrecy education for leaving the country, the state has strict regulations, which require that the whole staff must be educated in secrecy before leaving the country.

However, in the actual implementation process, sometimes due to the consideration that the outbound personnel are all senior managers, or when the outbound personnel are few or even individual personnel leave the country alone, the information security and confidentiality education link is changed to self-arranged or even omitted.

Third, when conducting business or business negotiations abroad, there is a lack of awareness of confidentiality.

Warm, friendly, sincere and kind-hearted are the fine virtues of the Chinese people, but when conducting business negotiations abroad, they are often unguarded, and many confidential matters may be easily said unwittingly.

This may not only lead to the disclosure of state secrets and create opportunities for overseas hostile forces, but also lead to a disadvantage in business cooperation negotiations.

The fourth is to bring out of the country internal materials, newspapers and periodicals and documents that are only allowed to circulate in the country.

This is often overlooked, especially for those who leave the country for business negotiations, in order to be fully prepared, they may carry with them some classified documents or internal data, which have been reported in cases of breach of confidentiality investigated and dealt with by the customs.

Fifth, it fails to store and transmit confidential matters in accordance with the regulations.

With the popularity of mobile devices such as mobile phones, mobile phone storage and photography are becoming more and more convenient, which not only brings convenience to the work, but also brings challenges to the security work.

Especially outside the country, the public opinion environment is complex, and a little carelessness may lead to the occurrence of leaks.

Sixth, the requirements for the confidentiality of customer information are not strict enough.

The leakage of domestic personal customer information often attracts the attention of domestic public opinion, and social and public events occur.

To carry out financial business operations abroad, most of the business matters involved are overseas customers, and the obligation to keep customer information confidential is more stringent. A little carelessness will easily lead to violations of laws and regulations.

Although there are no cases of foreign-related leaks that constitute public events in financial institutions, the confidentiality obligation of information security should be paid close attention to by financial institutions, especially overseas branches.

Do a good job in the security and confidentiality of information and safeguard the interests of the state and financial institutions.

Keeping secrets is not only the duty of every citizen, but also the duty of every institution.

In addition to the protection of state secrets, financial institutions should also pay attention to the protection of their own trade secrets and put an end to the occurrence of leaks.

First, strengthen secrecy education.

Overseas institutions should strengthen the secrecy education of expatriate staff.

First of all, it is necessary to conduct comprehensive overseas information security training before leaving the country to make them understand the secrecy requirements of state secrets and trade secrets.

During the period of working abroad, we should also persist in the continuous training of confidentiality knowledge so that it can always tighten the string of secrecy. Only when we have a good understanding of laws and regulations can we keep all kinds of secrets in action and ensure the security of national information.

The second is to strengthen the supervision and inspection of information security and confidentiality.

In the daily work, the management of confidential matters should be included in the internal system to enforce, and at the same time strengthen the staff's inspection of the implementation of the confidentiality system.

Through supervision and inspection, find the problems existing in the implementation process, and timely warn the staff to make them aware of the mistakes in the work of information security and secrecy, and effectively correct them.

Supervision and inspection should be meticulous and pragmatic, must not go through the formality, really identify problems and solve them.

The third is to strengthen the management of information security carriers.

With the improvement of the popularity of electronic, many secret matters are no longer transmitted through paper files, but through a variety of automated equipment and new media.

In the face of the new situation changes, overseas branches should, in accordance with the relevant requirements of the state, ensure the due leading level of hardware investment and ensure that they have the proper confidential storage function.

Should strengthen the management in the software, do not download the software that may cause the information to be stolen at will, and carry on the necessary shield to some malicious Trojan software.

For mobile storage media, it is especially necessary to strengthen storage to avoid reading the information of removable media on devices without security protection measures.

For the software and hardware equipment that needs to be destroyed, be sure to completely delete the confidential information records, and do not leave the confidential information in the eliminated equipment.

The fourth is to do a good job in the management of the carrying of entry and exit documents.

As more and more employees of overseas branches return to China for business or leave, they must be reminded to keep their nerves secret.

Confidential documents that are explicitly prohibited by the state, internal newspapers and periodicals that are not publicly distributed, data statements that are not published to the public, etc. must not be brought out of the country.

For mobile devices that store secret documents, secret records should also be deleted before leaving the country to ensure that no confidential information is taken out of the country.

The fifth is to keep customer information confidential.

Due to the omission in management, there have been several incidents of domestic financial institutions leaking customer information, which have aroused the disgust of the whole society and the attention of regulatory authorities, and some of them have been punished by law.

Outside the country