Abstract: In order to achieve unified security management of railway freight transportation data and improve information sharing capabilities in various business scenarios, this paper refered to the maturity model of data security capabilities and constructed a railway freight data security management model and security strategy architecture from three aspects: data security capability management, data whole lifecycle security management, and general security management. It aims to creat a railway freight data security system that integrates management and control, protection, auditing, collaboration, and perception capabilities, provide strong support for the full data security of railway freight data processing centers.