Abstract: With the continuous penetration and integration of IT and OT technologies, the continuous innovation and development of the Industrial Internet has brought many security problems. Increasing security problems have seriously affected the healthy development of the industrial Internet, and also put forward higher requirements for the safe operation and maintenance of the industrial Internet. Firstly, it introduces the concept and characteristics of Industrial Internet, then briefly introduces the severe security situation faced by Industrial Internet, and studies the industrial control from the aspects of operation and maintenance object, technical system, management system and operation and maintenance team of industrial Internet security. The network security operation and maintenance architecture focuses on the analysis and discussion of the security operation and maintenance technology of the industrial Internet. It is mainly divided into five types of technologies: access control and isolation protection technology, security encryption technology, unified security monitoring tools, and deploy security monitoring and auditing systems, as well as deploying intrusion detection and prevention systems.

Key words: industrial Internet, network security, security operation and maintenance, monitoring and audit system, intrusion prevention

摘要： 随着IT和OT技术的不断渗透融合，工业互联网的不断创新发展，其面临的诸多安全问题随之而来，日益增多的安全问题严重影响了工业互联网的健康发展，同时也对工业互联网的安全运维提出更高的要求.首先介绍了工业互联网的概念以及特点，然后简要介绍了工业互联网所面临的严峻安全形势，并从工业互联网安全的运维对象、技术体系、管理体系、运维队伍建设4个方面研究了工控网络安全运维架构，着重对工业互联网的安全运维技术进行分析和探讨，主要分为5类技术，分别为访问控制与隔离防护技术、使用安全加密技术、采用统一的安全监控工具、部署安全监测与审计系统以及部署入侵检测与防御系统.

关键词: 工业互联网, 网络安全, 安全运维, 监测审计, 入侵防御