Core Insights - The article emphasizes the importance of information security level protection assessment as a foundational requirement for corporate compliance in the context of digital transformation [1][4] - It discusses optimizing the assessment fee structure and device configuration to enhance corporate security [1][4] Group 1: Device Configuration - A typical enterprise-level security device configuration should include boundary protection devices, access control systems, data security components, and monitoring response systems [4] - Boundary protection devices account for over 40% of the security budget, highlighting the principle of layered protection in security construction [5] Group 2: Assessment Fee Structure - The assessment fee varies based on system importance, network complexity, and the completeness of existing security measures [6] - For secondary systems, the basic assessment service ranges from 30,000 to 60,000 yuan, while for tertiary systems, it ranges from 15,000 to 30,000 yuan [6] Group 3: Cost Optimization Strategies - Companies are advised to implement a phased strategy, prioritize essential equipment deployment, and consider resource reuse to optimize cost-effectiveness [7] - A financial institution reduced its annual compliance costs by approximately 35% through effective planning of the assessment scope after adopting a hybrid cloud architecture [7] Group 4: Common Issues and Solutions - Common issues faced during the assessment process include extended assessment periods and unclear rectification standards, which can be mitigated by early preparation and clear communication with assessment agencies [8] - An internet company improved its operational efficiency by deploying an automated log management system, addressing compliance requirements while enhancing operational value [8] Group 5: Continuous Improvement Mechanism - Establishing a long-term maintenance mechanism for security assessments should include quarterly security configuration checks and semi-annual vulnerability scans [9][12] - Integrating security requirements into daily operations has proven effective, as demonstrated by an energy group that increased its re-assessment pass rate from 68% to 92% through process management [10]

山石网科通信技术股份有限公司 向不特定对象发行可转换公司债券 www.lhratings.com 联合〔2025〕3294 号 联合资信评估股份有限公司通过对山石网科通信技术股份有限 公司主体及其相关债券的信用状况进行跟踪分析和评估，下调山石 网科通信技术股份有限公司主体长期信用等级为 A，下调"山石转 债"信用等级为 A，评级展望为负面。 特此公告 联合资信评估股份有限公司 评级总监： 二〇二五年五月二十八日 跟踪评级报告 | 2 声 明 一、本报告是联合资信基于评级方法和评级程序得出的截至发表之日的 独立意见陈述，未受任何机构或个人影响。评级结论及相关分析为联合资信 基于相关信息和资料对评级对象所发表的前瞻性观点，而非对评级对象的事 实陈述或鉴证意见。联合资信有充分理由保证所出具的评级报告遵循了真 实、客观、公正的原则。鉴于信用评级工作特性及受客观条件影响，本报告 在资料信息获取、评级方法与模型、未来事项预测评估等方面存在局限性。 二、本报告系联合资信接受山石网科通信技术股份有限公司（以下简称 "该公司"）委托所出具，除因本次评级事项联合资信与该公司构成评级委 托关系外，联合资信、评级人员与该公司不存在任 ...