Network Security Situation Awareness (NSSA) knowledge has been comprehensively studied in multi-data analyzing research these years. NSSA is a conception pertinent to assessing and showing the global and comprehensive situation of network security, so it requires people to collect all kinds of data and analysis for as many dimensions as possible in order to reflect the macroscopic pictures. | International Journal of Computer Networks and Communications Security VOL. 5, NO. 4, APRIL 2017, 71–75 Available online at: E-ISSN 2308-9830 (Online) / ISSN 2410-0595 (Print) A Multi-Perspective and Multi-Level Analysis Framework in Network Security Situational Awareness , Dr and Dr 1 2 Research Scholar, 's University, Avadi, Chennai-600054 Professor/CSE, C Abdul Hakeem College of Engineering and Technology, Melvisharam, Tamil Nadu 632509 3 Associate Professor/IT, Engineering College, Salem, Tamil Nadu 636308 1 azhagiri1687@ ABSTRACT Network Security Situation Awareness (NSSA) knowledge has been comprehensively studied in multi-data analyzing research these years. NSSA is a conception pertinent to assessing and showing the global and comprehensive situation of network security, so it requires people to collect all kinds of data and analysis for as many dimensions as possible in order to reflect the macroscopic pictures. For network security situation evaluation method has been provided, and it represent’s how to apply this method to NSSA. A multi-perspective and multi-level analysis framework for NSSA is presented to demonstrate the advantages and effectiveness by using this method. Keywords: Situation Awareness, Multi-Level Analysis, Multi-Perspective Analysis, NSSA. 1 INTRODUCTION The idea of Situation Awareness (SA) comes from the research on human factors in the domain of aerospace and aviation. The concept of Situational Awareness is an extremely important one in information security cyber security operations. Situational Awareness is defined as: “Within a volume of time and space, the perception of an enterprise’s security posture and its threat environment; the comprehension/meaning of both taken together (risk); and the projection of their status into the near future.” Also, it is stated that Continuous monitoring is ongoing observance with intent to provide warning. A continuous