Information security technology -- Evaluation framework for information systems security assurance -- Part 3: Management assurance
Sector / Industry
National Standard (Recommended)
Classification of Chinese Standard
L80
Classification of International Standard
35.040
Word Count Estimation
110,133
Date of Issue
2008-07-18
Date of Implementation
2008-12-01
Regulation (derived from)
Announcement of Newly Approved National Standards No. 14 of 2008 (total 127)
Issuing agency(ies)
General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China
Summary
This standard specifies the security information system security management framework, established within an organization initiating, implementing, maintaining, evaluating and improving information security management guidelines and general principles. This section describes the definition and protection of information systems security management to reflect the organization 's information security management support capability level security management capabilities, as well as providing information security management organization management to ensure the protection of the contents of the control class requirements. This section applies to the work related to information system security management organization for all users, developers and evaluators.
