Abstract: Critical data is an important engine that keeps organizations and societies going, which makes it a target for malicious hackers, a target for intense scrutiny by regulators, and a need to prevent employees from inadvertently disclosing secret internal information. As the “guardian” to maintain the order of data opening and ensure data security, government departments should not only protect the security of sensitive data, maintain regulatory compliance, but also quickly deploy and implement data security protection projects without changing the existing business processes, and effectively control costs and reduce complexity and risks. This paper starts from the background of government data security governance, through the analysis of the government data security management status and security management needs, refer to the latest data security governance theory and technology research results at home and abroad, according to the relevant policies, laws and regulations, based on the security needs under the background of information technology application innovation, puts forward the framework of the system which applies to the security governance of government affairs data in our country, introduces the related technologies and project practice case.

Key words: digital government, government data, data security governance, data life cycle, information technology application innovation

摘要： 关键数据是维系组织和社会发展的重要动力，这使其成为黑客恶意觊觎的目标，也是监管机构严格审查的对象，同时组织还需要防止员工无意中泄露内部秘密信息.政府部门作为维护数据开放秩序和保障数据安全的“守护者”，既要保护敏感数据的安全，保持监管合规性，又要在不改变现有业务流程的前提下快速部署实施数据安全防护工程，有效控制成本，降低复杂度和风险.从政务数据安全治理背景出发，通过分析政府数据安全管理现状及安全管理需求，参考国内外最新数据安全治理理论与技术研究成果，依据相关政策法律法规要求，基于信创背景下的国产化安全需要，提出了适用于我国政务数据安全治理的体系框架，并介绍了相关技术以及项目实践案例.

关键词: 数字政府, 政务数据, 数据安全治理, 数据全生命周期, 信创