RB/T 201-2013 English PDFUS$469.00 ยท In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email. RB/T 201-2013: Evaluation requirements for service capability certification-of information-system security integration Status: Valid
Basic dataStandard ID: RB/T 201-2013 (RB/T201-2013)Description (Translated English): Evaluation requirements for service capability certification-of information-system security integration Sector / Industry: Chinese Industry Standard (Recommended) Classification of Chinese Standard: F10;F19 Classification of International Standard: 01.040.35 Word Count Estimation: 18,192 Date of Issue: 12/2/2013 Date of Implementation: 6/15/2014 Quoted Standard: GB/T 5271.8-2001; GB/T 20261-2006 Regulation (derived from): The industry standard for the record Notice 2014 No. 2 (No. 170 overall) Issuing agency(ies): National Certification and Accreditation Administration Summary: This standard specifies the information system security integration (hereinafter referred to as "SI") service provider should have the basic requirements, service requirements and the specific requirements of the process at all levels. This standard appli RB/T 201-2013: Evaluation requirements for service capability certification-of information-system security integration---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order. Evaluation requirements for service capability certification-of information-system security integration ICS 01.040.35 F10/19 Record number. 43669 People's Republic of China certification and recognition of industry standards Information System Security Integration Service Qualification Certification evaluation requirements Released.2013-12-02 2014-06-15 implementation China National Certification and Accreditation Administration issued ContentForeword I 1 Scope 1 2 Normative references 1 3 Terms, definitions and abbreviations 1 3.1 Terms and Definitions 1 3.2 Abbreviations 1 4 Basic requirements 1 4.1 Basic conditions 1 4.2 Basic Management Capabilities 2 4.3 Basic technical capabilities 2 5 Service Process Requirements 2 5.1 Security Integration Service Process Overview 2 5.2 Integration Preparation 5 5.3 Scheme Design 6 5.4 Construction Implementation 6 5.5 Security 7 6 Evaluation requirements at all levels 8 6.1 Overview 8 6.2 Level 3 Requirements 8 6.3 Secondary requirements 9 6.4 Level 1 requirements 10 7 Evaluation Requirements 11 Appendix A (informative) Information System Security Integration Service Qualification Certification Requirements Form 12 Reference 14ForewordThis standard was drafted in accordance with the rules given in GB/T 1.1-2009. This standard is proposed and managed by the National Certification and Accreditation Administration. This standard was drafted. China Information Security Certification Center, National Quality Supervision, Inspection and Quarantine Bureau of Standards and Regulations, Huawei Technologies Limited company. The main drafters of this standard. Yan Yahong, Cao Yabin, Chen Xiaohua, Zhang Bin, Zhang Zhijun, Song Zhigang, Li Qiang, Lu Ming, Li Zongyang. Information System Security Integration Service Qualification Certification evaluation requirements1 ScopeThis standard specifies the basic requirements and service procedures that information system security integration (hereinafter referred to as "security integration") service providers should have. Requirements and specific requirements at each level. This standard is applicable to the evaluation agency's evaluation of the service provider's service capability, and also applies to the information system owner's choice of service. The provider, the management department manages the service provider, and the service provider's self-ability improvement.2 Normative referencesThe following documents are indispensable for the application of this document. For dated references, only the dated version applies to this article. Pieces. For undated references, the latest edition (including all amendments) applies to this document. GB/T 5271.8-2001 Information technology -- Part 8. Safety GB/T 20261-2006 information technology system security engineering capability maturity model 3 Terms, definitions and abbreviations GB/T 5271.8-2001 "Information Technology Vocabulary Part 8. Security", GB/T 20261-2006 "Information Technology System Security" The following terms, definitions and abbreviations defined in the Engineering Capability Maturity Model apply to this document. 3.1 Terms and definitions Security integration securityintegration In accordance with the security requirements of information system construction, the security system and product components are implemented using the methods and theories of information system security engineering. The process of integration. Safety integration includes considering information security factors in the structural design of the new information system, thus completing the construction. The post-information system meets the security needs of the builder or the user. Also includes additional additions based on existing information systems Adding information security subsystems or information security devices is often referred to as security optimization or security hardening. Security integration services usually include calculations Machine application system engineering and network system engineering security requirements determination, program design, construction implementation, security and other activities. 3.2 Abbreviations CISAW Information Security Practitioner Certification (certifiedinformationsecurityassuranceworker) CISSP registration information system security expert (certifiedinformationsystemsecurityprofessional) CISA registered information security auditor (certifiedinformationsecurityauditor) PMP project management professional qualification (projectmanagementprofessional)4 basic requirements4.1 Basic conditions The service provider should. a) Having the status of an independent legal person within the territory of the People's Republic of China and the legal business qualification issued by the relevant department, with independent undertakings ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of RB/T 201-2013_English be delivered?Answer: Upon your order, we will start to translate RB/T 201-2013_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of RB/T 201-2013_English with my colleagues?Answer: Yes. The purchased PDF of RB/T 201-2013_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
