This standard specifies the process and method for the implementation of information security risk assessment. This standard applies to the management of information security risk assessment items of non-confidential information systems by various security assessment agencies or assessed organizations, guides the organization, implementation, acceptance of risk assessment items.
Basic Data
Standard ID
GB/T 31509-2015 (GB/T31509-2015)
Description (Translated English)
Information security technology - Guide of implementation for information security risk assessment
Sector / Industry
National Standard (Recommended)
Classification of Chinese Standard
L80
Classification of International Standard
35.040
Word Count Estimation
62,699
Date of Issue
2015-05-15
Date of Implementation
2016-01-01
Quoted Standard
GB/T 20984-2007; GB/Z 24364-2009
Regulation (derived from)
National Standard Announcement 2015 No. 15
Issuing agency(ies)
General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China
Summary
This Standard specifies the procedures and methods of implementation of information security risk assessment. This Standard applies to all types of safety assessment agency or organization to assess information security risk management assessment project non-classified information systems, risk assessment and project organization, implementation, acceptance and other work.
