GB/T 32351-2015 English PDFUS$509.00 ยท In stock
Delivery: <= 4 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 32351-2015: Information security level evaluation indicators for electric power industry Status: Valid
Basic dataStandard ID: GB/T 32351-2015 (GB/T32351-2015)Description (Translated English): Information security level evaluation indicators for electric power industry Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: F25 Classification of International Standard: 45.060 Word Count Estimation: 24,265 Date of Issue: 2015-12-31 Date of Implementation: 2016-07-01 Quoted Standard: GB/T 25069-2010 Regulation (derived from): State Standard Announcement 2015 No.43 Issuing agency(ies): General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China Summary: This standard specifies the power information security level evaluation index, describes the evaluation index quantification method. This standard applies to electric power regulatory agencies to power grid organizations, such as power grids, power generation, power research and design and construction, and also for self-evaluation of the information security level of the above-mentioned power organizations. Information security service providers for power organizations to provide services can also refer to the use. GB/T 32351-2015: Information security level evaluation indicators for electric power industry---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.Information security level evaluation indicators for electric power industry ICS 29.020 F25 National Standards of People's Republic of China Evaluation Index of Electricity Information Security Level 2015-12-31 released 2016-07-01 implementation General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China China National Standardization Management Committee released Directory Preface I Introduction II 1 Scope 1 2 normative reference document 1 3 Terms and definitions 1 4 Evaluation index framework and quantification method of power information security level 2 4.1 Evaluation Indicators Framework 2 4.2 Evaluation Indicator Description 4 4.3 Quantification method 5 5 Evaluation criteria for the level of safety of electricity information 6 5.1 Organizational system (ORG) 6 5.2 Rules and Regulations (REG) 6 5.3 Funds Protection (FUN) 7 5.4 Personnel Safety Management (PER) 8 5.5 Service Outsourcing Control (OSE) 9 5.6 Key information asset management (ASS) 10 5.7 Information System Construction Safety Management (CON) 10 5.8 Security Zone Defense (SDD) 11 5.9 Network Security (NET) 12 5.10 Host and Equipment Security (HEQ) 13 5.11 Application System and Data Security Protection (ADA) 14 5.12 Physical Environment Security (PEN) 15 5.13 Information System Operation Safety Management (OPE) 15 5.14 Disaster Recovery (REC) 16 5.15 Emergency Management (EME) 17 References 19 ForewordThis standard is drafted in accordance with the rules given in GB/T 1.1-2009. This standard is proposed by the National Energy Board. This standard is under the jurisdiction of the National Electricity Regulatory Standardization Technical Committee (SAC/TC296). The drafting unit of this standard. China Electric Power Research Institute, National Energy Bureau Information Center, Northeast Energy Regulatory Bureau, Liaoning Electric Power Co., Ltd. Electric Power Research Institute. The main drafters of this standard. Sun Yaowei, Hu Hongsheng, Gao Kunlun, Wen Hongzi, Chen Xuehong, Zhao Ting, Zheng Xiaokun, Yuan Shun, Lu Wei, Zhang Wenyan, Xu Xingkun, Liang Xiao, Wang Enku, Cao Yufei, Li Yikang.IntroductionWith the ever-changing information security situation and the deepening of the work of power information security, there is an urgent need for a quantitative, State of the new management methods to promote the power industry information security level continues to improve. This standard is based on the Electricity Regulatory Ordinance (Chinese) The State Council Decree No. 432 of the People's Republic of China), Interim Provisions on the Supervision and Administration of Network and Information Security of Electric Power Industry (No. 10 [2007] of the EM & A) And the relevant national standards and norms, the provisions of the power of information security level evaluation indicators and describes the quantitative evaluation of the evaluation method can be used for evaluation Price of various types of power organization information security level. Evaluation Index of Electricity Information Security Level1 ScopeThis standard specifies the evaluation index of power information security level, and describes the quantification method of evaluation index. This standard applies to the power regulatory agencies on the power grid, power generation, power research and power design and construction of power organizations to carry out information security Level evaluation, also applies to the above-mentioned power organization to carry out the information security level self-evaluation. Information security service provider for power organizer When the service is provided, it can also be used.2 normative reference documentsThe following documents are indispensable for the application of this document. For dated references, only the dated edition applies to this article Pieces. For undated references, the latest edition (including all modifications) applies to this document. Information security technical terminology GB/T 25069-20103 terms and definitionsThe following terms and definitions, as defined in GB/T 25069-2010, apply to this document. 3.1 Information security level index informationsecuritylevelindex ISL Objectively reflect the organizational information security work as a whole to carry out the value of the situation to assess the overall level of information security organizations, by all The evaluation index is quantified and calculated. 3.2 Classified information security level index classifiedinformationsecuritylevelindex ISLi Objectively reflect the organization of a certain type of information security work to carry out the situation in order to evaluate the organization of a certain aspect of information security work Level, calculated by the evaluation index in the evaluation index. 3.3 Corrected information security level index correctedinformationsecuritylevelindex ISLc In order to compensate the organization for the part of the evaluation of the applicability of the indicators, the mathematical method to correct the information security level index obtained value. 3.4 Evaluation Indicator Class Identifier classifiedevaluationindicatoridentifier The symbol that uniquely identifies the evaluation index class consists of three English characters, which are also used in the evaluation index class to evaluate the indicator item. Naming rules. 3.5 Evaluation index item identifier evaluationindicatoridentifier The symbol, which uniquely identifies the evaluation index term, consists of a set of characters whose first three characters are the same as the evaluation index class identifier to which they belong. The remaining characters are the serial numbers of the evaluation index items in the indicator class. ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 32351-2015_English be delivered?Answer: Upon your order, we will start to translate GB/T 32351-2015_English as soon as possible, and keep you informed of the progress. The lead time is typically 2 ~ 4 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 32351-2015_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 32351-2015_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
