|
US$199.00 ยท In stock
Delivery: <= 3 days. True-PDF full-copy in English will be manually translated and delivered via email.
GB/T 37094-2018: Information security technology -- Security management requirements for office information systems
Status: Valid
| Standard ID | Contents [version] | USD | STEP2 | [PDF] delivered in | Standard Title (Description) | Status | PDF |
| GB/T 37094-2018 | English | 199 |
Add to Cart
|
3 days [Need to translate]
|
Information security technology -- Security management requirements for office information systems
| Valid |
GB/T 37094-2018
|
PDF similar to GB/T 37094-2018
Basic data | Standard ID | GB/T 37094-2018 (GB/T37094-2018) | | Description (Translated English) | Information security technology -- Security management requirements for office information systems | | Sector / Industry | National Standard (Recommended) | | Classification of Chinese Standard | L80 | | Classification of International Standard | 35.040 | | Word Count Estimation | 10,168 | | Date of Issue | 2018-12-28 | | Date of Implementation | 2019-07-01 | | Issuing agency(ies) | State Administration for Market Regulation, China National Standardization Administration | GB/T 37094-2018: Information security technology -- Security management requirements for office information systems
---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Information security technology--Security management requirements for office information systems
ICS 35.040
L80
National Standards of People's Republic of China
Information security technology
Office Information System Security Management Requirements
Published on.2018-12-28
2019-07-01 implementation
State market supervision and administration
China National Standardization Administration issued
Content
Foreword I
1 Scope 1
2 Normative references 1
3 Terms and Definitions 1
4 Management requirements 1
4.1 Construction Management 1
4.1.1 Scheme Design 1
4.1.2 Product Purchase and Use 1
4.1.3 Software Development 2
4.1.4 Project Implementation 2
4.1.5 Test Acceptance 2
4.1.6 System Delivery 2
4.1.7 Service provider selection 3
4.2 System Operation and Maintenance Management 3
4.2.1 Environmental Management 3
4.2.2 Asset Management 3
4.2.3 Device Management 3
4.2.4 Monitoring Management 3
4.2.5 Security Management 4
4.2.6 Change Management 4
4.2.7 Backup and Recovery Management 5
4.2.8 Emergency Response Management 5
4.2.9 Maintenance and End of Life Management 5
4.3 System Management 5
4.3.1 Management System 5
4.3.2 Management organization 6
4.3.3 Personnel Management 6
4.4 Outsourcing Management 7
Foreword
This standard was drafted in accordance with the rules given in GB/T 1.1-2009.
Please note that some of the contents of this document may involve patents. The issuing organization of this document is not responsible for identifying these patents.
This standard is proposed and managed by the National Information Security Standardization Technical Committee (SAC/TC260).
This standard is mainly drafted by. China Electronics Technology Standardization Research Institute, Software and Integrated Circuit Promotion Center, Shenzhen Saixi Information Technology
Co., Ltd., Ministry of Industry and Information Technology, Fifth Institute of Electronics, Beijing Saixi Technology Development Co., Ltd., China Communications and Communication Information Center, Xi'an
University of Electronic Science and Technology, Beijing University of Technology.
The main drafters of this standard. Yao Xiangzhen, Liu Xiangang, Fan Kefeng, Gao Lin, Yang Jianjun, Dai Ming, Tang Yihong, Bi Siwen, Ye Runguo, Xu Dongyang,
Gong Jiezhong, Sun Kangjian, Liu Longgeng, Liu Shuai, Wang Li, Li Yunting, Zhao Qingyi, Yang Zhen.
Information security technology
Office Information System Security Management Requirements
1 Scope
This standard specifies the requirements for the construction management, system operation and maintenance management, system management and outsourcing management of office information systems.
This standard is applicable to guide the security management of office information systems of the party and government departments, and the construction management basis of the confidential office information systems.
National secrecy regulations and standards are required to be implemented.
2 Normative references
The following documents are indispensable for the application of this document. For dated references, only dated versions apply to this article.
Pieces. For undated references, the latest edition (including all amendments) applies to this document.
GB/T 25069-2010 Information Security Technology Terminology
GB/T 32926-2016 Information Security Technology Government Department Information Technology Service Outsourcing Information Security Management Specification
GB/T 37095-2018 Information Security Technology Office Information System Security Basic Technical Requirements
GB/T 37096-2018 Information Security Technology Office Information System Security Test Specification
3 Terms and definitions
The terms and definitions defined in GB/T 25069-2010 and GB/T 37095-2018 apply to this document.
4 Management requirements
4.1 Construction Management
4.1.1 Scheme design
The program design requirements are as follows.
a) The owner unit designates or authorizes a special department to prepare the overall construction according to the principles of office information system construction and construction needs.
Planning, technical framework and detailed design plan, formulate construction work plan and management system, and form supporting documents;
b) Relevant departments and experts should be organized to relevant supporting documents for the overall planning, technical framework and detailed design plan adopted in the construction.
Rationality and scientificity are demonstrated and can only be formally implemented after approval by the owner.
4.1.2 Product Purchase and Use
Product procurement and use requirements are as follows.
a) Infrastructure, equipment, hardware and software products, etc. should be selected according to the principles of office information system construction and construction needs.
Perform a selection test;
b) Product selection should be based on the following basic requirements.
Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 37094-2018_English be delivered?Answer: Upon your order, we will start to translate GB/T 37094-2018_English as soon as possible, and keep you informed of the progress. The lead time is typically 1 ~ 3 working days. The lengthier the document the longer the lead time. Question 2: Can I share the purchased PDF of GB/T 37094-2018_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 37094-2018_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet. Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to [email protected]. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay.
|