GB/T 20261-2020: Information security technology. System security engineering. Capability maturity model

Delivery: 9 seconds. Download (and Email) true-PDF + Invoice.
Get Quotation: Click GB/T 20261-2020 (Self-service in 1-minute)
Newer / historical versions: GB/T 20261-2020

Preview True-PDF

Scope

This Standard specifies the Systems Security Engineering – Capability Maturity Model
(SSE-CMM®). The SSE-CMM® is a process reference model focused upon the
requirements for implementing security in a system or series of related systems that are
the information technology security (ITS) domain.

Basic Data

Standard ID	GB/T 20261-2020 (GB/T20261-2020)
Description (Translated English)	Information security technology. System security engineering. Capability maturity model
Sector / Industry	National Standard (Recommended)
Classification of Chinese Standard	L80
Classification of International Standard	35.040
Word Count Estimation	134,191
Date of Issue	2020-11-19
Date of Implementation	2021-06-01
Older Standard (superseded by this standard)	GB/T 20261-2006
Quoted Standard	GB/T 18336.1-2015; GB/T 25069-2010; GB/T 29246-2017; GB/T 30.271-2013; ISO/IEC 15288; ISO/IEC 33020
Adopted Standard	ISO/IEC 21827-2008, MOD
Regulation (derived from)	National Standard Announcement No. 26 of 2020
Issuing agency(ies)	State Administration for Market Regulation, China National Standardization Administration
Summary	This standard specifies that the System Security Engineering Capability Maturity Model (hereinafter referred to as SSE-CMM) is a process reference model that focuses on the security requirements of a certain system or several related systems in the field of Information Technology Security (ITS). In the field of ITS, SSE-CMM focuses on the processes used to realize ITS, especially the maturity of these processes. The purpose of SSE-CMM is not to stipulate the specific process used by the organization, let alone the specific method, but hope that the organization that is going to use SSE-CMM to use its existing process-those based on any other information technology security guidance documents process. This standard stipulates that SSE-CMM is a model specifically used to improve and evaluate safety engineering capabilities, and cannot be carried out independently of other engineering disciplines.