GB/T 36618-2018 English PDFUS$279.00 ยท In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 36618-2018: Information security technology -- Specification for financial information service security Status: Valid
Basic dataStandard ID: GB/T 36618-2018 (GB/T36618-2018)Description (Translated English): Information security technology -- Specification for financial information service security Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: L80 Classification of International Standard: 35.040 Word Count Estimation: 14,150 Date of Issue: 2018-09-17 Date of Implementation: 2019-04-01 Issuing agency(ies): State Administration for Market Regulation, China National Standardization Administration GB/T 36618-2018: Information security technology -- Specification for financial information service security---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order. Information security technology - Specification for financial information service security ICS 35.040 L80 National Standards of People's Republic of China Information Security Technology Financial Information Service Security Specification Servicesecurity Published on.2018-09-17 Implementation of.2019-04-01 State market supervision and administration China National Standardization Administration issued ContentForeword III Introduction IV 1 Scope 1 2 Normative references 1 3 Terms and Definitions 1 4 Basic Principles 2 4.1 Accuracy 2 4.2 Integrity 2 4.3 Availability 2 4.4 Timeliness 2 4.5 Credibility 2 4.6 Compliance 2 4.7 Non-repudiation 2 4.8 Confidentiality 2 4.9 Controllability 2 5 Service Process Requirements 3 5.1 Overview 3 5.2 Financial Information Collection 3 5.2.1 Financial information source 3 5.2.2 Basic requirements for financial information collection 3 5.2.3 Financial Information Collection Method 3 5.3 Financial Information Processing and Processing 3 5.3.1 Basic requirements for processing and processing 3 5.3.2 Processing and processing methods 4 5.4 Financial Information Provision 4 5.4.1 Basic requirements for financial information provision 4 5.4.2 Mode 4 6 Technical requirements 4 6.1 Infrastructure Security 4 6.2 Software Security 5 6.3 Network Security 5 6.4 Data Security 5 6.4.1 Provider Data Security Requirements 5 6.4.2 User Data Security Requirements 5 6.5 Operational Safety 6 6.6 Disaster Recovery and Recovery 6 7 Management requirements 6 7.1 Institutional guarantee 6 7.2 Management Responsibilities 6 7.3 Personnel Management 6 7.4 Training and Education 7 7.5 Risk Management 7 7.6 Outsourcing Management 7 Reference 8ForewordThis standard was drafted in accordance with the rules given in GB/T 1.1-2009. Please note that some of the contents of this document may involve patents. The issuing organization of this document is not responsible for identifying these patents. This standard is proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260). This standard was drafted. Beijing Ji'an Jinxin Technology Co., Ltd., Renmin University of China, Institute of Information Engineering, Chinese Academy of Sciences, Tsinghua University Wudaokou Finance College, China Economic Information Service, Wind Information Technology Co., Ltd., Oriental Fortune Information Co., Ltd., Shanghai University Wisdom Co., Ltd., Tencent Technology (Beijing) Co., Ltd. The main drafters of this standard. Yang Jian, Jing Jiwu, Hong Bin, Chen Feng, Wang Tieniu, Qin Wenyi, Qian Minghui, Wang Keping, Zhu Xiangwen, Wang Shengxian, Ma Li, Lei Yu, Liu Zihang, Chen Nan, Li Shangyu, He Yufei, Zhou Li, Wang Zhengwei, Li Xiuming, Qi Jisheng, Jufeng, Fan Xiaoli, Cheng Hongyan, Xu Ke, Feng Weiqiang, Wu Zheng, Zhang Wei, Wang Wenwen.IntroductionFinancial information is of particular importance to national financial policy makers, financial institutions, and investment decision makers. Financial information security is an integral part of national information security, and security issues such as information resources, information systems, and information networks are not only Affecting financial information service activities, and may affect national financial security, in order to improve the quality of financial information, improve the level of financial information services, This standard is specially formulated to maintain the healthy development of the market and protect the rights and interests of users. This standard puts forward basic requirements for the internal management and security technology of financial information service providers, and the formulation of standards will be beneficial. Financial information service providers regulate financial information service processes, prevent financial information service security risks, and continuously improve financial information services quality. Information Security Technology Financial Information Service Security Specification1 ScopeThis standard specifies the basic principles, service process requirements, technical requirements and management of financial information service providers when providing financial information services. Requirements. This standard applies to financial information services provided by domestic and foreign financial information service providers registered or registered in the territory of the People's Republic of China. activity.2 Normative referencesThe following documents are indispensable for the application of this document. For dated references, only dated versions apply to this article. Pieces. For undated references, the latest edition (including all amendments) applies to this document. GB/T 20271-2006 Information security technology information system general safety technical requirements GB/T 20272-2006 Information security technology operating system security technical requirements GB/T 20988-2007 Information Security Technology Information System Disaster Recovery Specification GB/T 21028-2007 Information Security Technology Server Security Technical Requirements GB/T 28827.1-2012 Operation and maintenance of information technology services - Part 1. General requirements GB/T 28827.3-2012 Operation and maintenance of information technology services - Part 3. GB/T 31500-2015 Information Security Technology Storage Media Data Recovery Service Requirements GB/T 32924-2016 Information Security Technology Network Security Early Warning Guide GB/T 33132-2016 Information Security Technology Information Security Risk Handling Implementation Guide GB/T 33530-2017 Human Resources Outsourcing Service Specification GB/T 33770.1-2017 Information technology service outsourcing Part 1. General requirements for service providers3 Terms and definitionsThe following terms and definitions apply to this document. 3.1 Financial information financialinformation Information that reflects the state of financial activity and the substance of its changes. Note. Includes various signals, instructions, data, messages and reports related to financial activities and financial markets. 3.2 Financial information service financialinformationservice Provide financial activities and financial markets that may affect financial industries such as analysis, decision-making, trading, and liquidation, as well as related institutions and individuals. Information, data, software and related information technology activities. 3.3 Financial information service provider financialinformationservicesprovider An organization that provides financial information services. ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 36618-2018_English be delivered?Answer: Upon your order, we will start to translate GB/T 36618-2018_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 36618-2018_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 36618-2018_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
