网络安全问题是工业控制系统当前面临的重大挑战，在做好技术防护的基础上，网络安全保障必须要依托管理的完善。研究基于PDCA模型实现动态的工业控制系统网络安全管理循环，并介绍了在A公司实施的工业控制系统网络安全管理实践，通过构建网络安全管理制度体系框架，建立完整的管理制度库进行统一管理，对现有制度条款进行修订和完善，对于关键环节制定制度执行情况审查的依据，定期开展网络安全管理自查，对管理制度的执行情况进行检查从而对管理制度体系的合理性和适用性进行审定，以此不断循环，不断改进，最终实现持续的网络安全。

Network security is a major challenge faced by industrial control systems today, and on the basis of good technical protection, network security must rely on the improvement of management. This paper researches on the realization of a dynamic industrial control system network security management cycle based on the PDCA model, and introduces the industrial control system network security management practice implemented in A Company. By constructing a network security management system framework, it establishes a complete management system library for unified management, revises and improves the existing system clauses, formulates the basis for reviewing the implementation of the system in key links, conducts regular network security managementself-examinations, and monitors implementations of the system so as to verify the rationality and applicability of the management system, and finally achieve continuous network security.