Guosen Securities is one of the top ten large-scale comprehensive securities companies in China by total assets, and one of the top eight innovative pilot securities companies in the industry. Relying on the Internet platform, Guosen Securities provides investors with efficient and fast financial services, promotes the construction of a multi-level and three-dimensional wealth management service system, accelerates the establishment of a "whole value chain wealth management" system, and helps the high-quality development of the capital market.
Technology promotes the development of the securities industry
Gradual increase in security requirements
With the rapid development of financial technology in the securities industry, Guosen Securities has increased its investment in information technology year by year, and the top-level design has been continuously optimized, and good results have been achieved. However, while the securities industry is using financial technology to promote development, the government and enterprises are also very concerned about the security issues inherent in it.
Recently, in order to promote securities companies to strengthen the safe and stable operation of network and information systems, improve the level of capital market network and information security, and prevent and resolve network and information system security risks, the Securities Association of China issued the "Securities Company Network and Information Security Three-Year Improvement Plan" , focusing on network and information security, focusing on preventing network and information security risks, and putting forward higher task requirements for the security construction of the securities industry.
Introducing a gray-box security testing platform
Ensure consistent security of the system
Guosen Securities has started security construction in the software field very early. As early as 2019, it signed a contract with Kaiyuan Wangan, introduced the open source Wangan gray box security testing platform (VulHunter) , improved the security development system, and integrated VulHunter into the industry's existing Some defect management platforms are integrated into the development and testing process to improve the security of the application system.
VulHunter covers 100% of the self-developed application system of Guosen Securities, provides it with strong security tool support, promotes the effective implementation of security work, completes the security inspection of the application system delivered by outsourcing companies, and ensures the consistent security of self-developed and outsourced systems , Reduced the security risks faced , helped Guosen Securities to improve service quality and level, and provided customers with comprehensive and safe financial products and services.
Open source network security will help Guosen Securities adhere to the bottom line of compliance and risk control, continue to promote digital transformation, accelerate the construction of "Smart Guosen", and contribute more to the high-quality economic and social development. Open source network security itself will also focus on the goal of "escorting enterprise software security", helping financial customers build a safer and more stable digital security system, and ensuring the safe and stable operation of key information infrastructure to a greater extent.
