Abstract: With the frequent occurrence of various types of security risks in recent years, cyber security is becoming more and more serious. Once the critical information systems such as core business systems and goverment portals been attacked, will be having a wide range of impacts, endangering nation security, national economy and people's life and public interests.. In order to reduce the losses caused by cyber security incidents, it is very necessary for E-Government institutes to establish standardized and efficient emergency plan. Due to the limitations of consciousness, technology and resources, E-Government institutes have common problems in the construction and practice of common emergency plans. In view of this, it's necessary to put forward some suggestions for the optimization of emergency plans, which can help the information security staff of E-Government institutes to standardize the response process of cyber security incidents.

Key words: cyber security, emergency plan, EGovernment institutes, emergency response, information security

摘要： 随着近年来各种类型的安全风险频繁出现，网络安全变得越来越严重.政务单位的关键业务系统及门户网站等重要信息系统一旦遭受攻击，影响范围广，严重危害国家安全、国计民生及公共利益.为最大化降低网络安全事件造成的损失，电子政务单位建立规范高效的网络安全事件应急预案是非常有必要的.政务单位在规范网络安全事件应急响应工作中，由于意识、技术和资源等的局限性，存在共性的应急预案建设和实践方面的疑惑和问题.鉴于此，有必要提出应急预案优化的若干建议，从而对电子政务单位信息安全工作人员规范网络安全事件响应流程提供帮助.

关键词: 网络安全, 应急预案, 电子政务单位, 安全事件响应, 信息安全