GB/T 29246-2023 PDF EnglishUS$515.00 · In stock · Download in 9 seconds
GB/T 29246-2023: Information security technology - Information security management systems - Overview and vocabulary Delivery: 9 seconds. True-PDF full-copy in English & invoice will be downloaded + auto-delivered via email. See step-by-step procedure Status: Valid GB/T 29246: Historical versions
Similar standardsGB/T 29246-2023: Information security technology - Information security management systems - Overview and vocabulary---This is an excerpt. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.), auto-downloaded/delivered in 9 seconds, can be purchased online: https://www.ChineseStandard.net/PDF.aspx/GBT29246-2023 GB NATIONAL STANDARD OF THE PEOPLE'S REPUBLIC OF CHINA ICS 35.030 CCS L 80 GB/T 29246-2023 / ISO/IEC 27000.2018 Replacing GB/T 29246-2017 Information security technology - Information security management systems - Overview and vocabulary (ISO/IEC 27000.2018, Information technology - Security techniques - Information security management systems - Overview and vocabulary, IDT) Issued on. DECEMBER 28, 2023 Implemented on. JULY 1, 2024 Issued by. State Administration for Market Regulation; Standardization Administration of PRC. Table of ContentsForeword... 3 1 Scope... 5 2 Normative references... 5 3 Terms and definitions... 5 4 Information security management systems (ISMS)... 18 4.1 General... 18 4.2 Concept of ISMS... 19 4.3 Process approach... 21 4.4 Why an ISMS is important... 22 4.5 Establishing, monitoring, maintaining and improving an ISMS... 23 4.6 ISMS critical success factors... 27 4.7 Benefits of the ISMS family of standards... 28 5 ISMS family of standards... 29 5.1 General information... 29 5.2 Standard describing an overview and terminology. ISO/IEC 27000 (GB/T 29246). 30 5.3 Standards specifying requirements... 31 5.4 Standards describing general guidelines... 32 5.5 Standards describing sector-specific guidelines... 36 References... 40 Indexes... 43ForewordThis document was drafted in accordance with the provisions of GB/T 1.1-2020 Directives for standardization - Part 1.Rules for the structure and drafting of standardizing documents. This document replaces GB/T 29246-2017 Information technology - Security techniques - Information security management systems - Overview and vocabulary. Compared with GB/T 29246-2017, in addition to structural adjustments and editorial changes, the main technical changes are as follows. a) The terms "analytical model", "attribute", "data", "decision criteria", "executive management", "ISMS project", "measurement results", "object", "scale", "unit of measurement", "validation" and "verification" are deleted (see Chapter 3 of the 2017 edition); b) The terms "interested party" (see 2.41 of the 2017 edition) and "stakeholder" (see 2.82 of the 2017 edition) with the same definition are merged into the term "interested party; stakeholder" (see 3.37); c) The description of ISO/IEC 27009 is added (see 5.3.3); d) The description of ISO/IEC 27021 is added (see 5.4.10); e) The descriptions of some standards in the information security management system family of standards are updated (see Chapter 5; see Chapter 4 of the 2017 edition). This document is identical to ISO/IEC 27000.2018 Information technology - Security techniques - Information security management systems - Overview and vocabulary. The following minimal editorial changes are made to this document. -- In order to coordinate with the existing standards, the name of the standard is changed to "Information security technology - Information security management systems - Overview and vocabulary". Please note that some of the contents of this document may involve patents. The issuing organization of this document does not assume the responsibility for identifying patents. This document was proposed by and is under the jurisdiction of the National Technical Committee on Cybersecurity of Standardization Administration of China (SAC/TC260). Drafting organizations of this document. China Electronics Cyberspace Great Wall Co., Ltd., China Electronics Standardization Institute, Hangzhou DBAPP Security Co., Ltd., China Software Testing Center, China Academy of Information and Communications Technology, CESI Certification Co., Ltd., China Information Consulting and Designing Institute Co., Ltd., National Computer Network Emergency Response Technical Team/Coordination Center of China, Sangfor Technologies Co., Ltd., Venustech Group Co., Ltd., Changyang Technology (Beijing) Co., Ltd., the Third Research Institute of the Ministry of Public Security, Shenzhen University, Beijing Baidu Netcom Science and Technology Co., Ltd., Beijing Powertime Co., Ltd., China Three Gorges Corporation. Main drafters of this document. Min Jinghua, Wang Huili, Fan Bo, Zhou Yachao, Zuo Ran, Li Xintian, Li Wangwei, Zhao Lihua, Gao Lifen, Wang Wenlei, Liu Chen, Zhu Yuze, Zhao Hua, Wang Ning, Liu Weili, Wang Haitang, Guo Jianling, Pan Wenbo, Tang Jin, Wang Bingzheng. The previous versions of this document and the documents it replaces are as follows. -- First issued in 2012 as GB/T 29246-2012; -- First revised in 2017; -- This is the second revision. Information security technology - Information security management systems - Overview and vocabulary1 ScopeThis document provides the overview of information security management systems (ISMS). It also provides terms and definitions commonly used in the ISMS family of standards.2 Normative referencesThere are no normative references in this document.3 Terms and definitionsThe measure (3.42) defined in terms of an attribute and the method for quantifying it. A person or organization (3.50) that can affect, be affected by, or perceive itself to be affected by a decision or activity.4 Information security management systems (ISMS)Protecting information assets through defining, achieving, maintaining, and improving information security effectively is essential to enable an organization to achieve its objectives, and maintain and enhance its legal compliance and image.5 ISMS family of standardsThe ISMS family of standards consists of inter-related standards, already published or under development, and contains a number of significant structural components. These components are focused on. Information technology - Security techniques - Guidelines for auditors on information security controls (Information technology - Security techniques - Guidelines for auditors on information security controls) ......Source: Above contents are excerpted from the full-copy PDF -- translated/reviewed by: www.ChineseStandard.net / Wayne Zheng et al. Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of English version of GB/T 29246-2023 be delivered?Answer: The full copy PDF of English version of GB/T 29246-2023 can be downloaded in 9 seconds, and it will also be emailed to you in 9 seconds (double mechanisms to ensure the delivery reliably), with PDF-invoice.Question 2: Can I share the purchased PDF of GB/T 29246-2023_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 29246-2023_English will be deemed to be sold to your employer/organization who actually paid for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. www.ChineseStandard.us -- GB/T 29246-2023 -- Click this link and select your country/currency to pay, the exact amount in your currency will be printed on the invoice. Full PDF will also be downloaded/emailed in 9 seconds.Question 5: Should I purchase the latest version GB/T 29246-2023?Answer: Yes. Unless special scenarios such as technical constraints or academic study, you should always prioritize to purchase the latest version GB/T 29246-2023 even if the enforcement date is in future. Complying with the latest version means that, by default, it also complies with all the earlier versions, technically.How to buy and download a true PDF of English version of GB/T 29246-2023?A step-by-step guide to download PDF of GB/T 29246-2023_EnglishStep 1: Visit website https://www.ChineseStandard.net (Pay in USD), or https://www.ChineseStandard.us (Pay in any currencies such as Euro, KRW, JPY, AUD).Step 2: Search keyword "GB/T 29246-2023". Step 3: Click "Add to Cart". If multiple PDFs are required, repeat steps 2 and 3 to add up to 12 PDFs to cart. Step 4: Select payment option (Via payment agents Stripe or PayPal). Step 5: Customize Tax Invoice -- Fill up your email etc. Step 6: Click "Checkout". Step 7: Make payment by credit card, PayPal, Google Pay etc. After the payment is completed and in 9 seconds, you will receive 2 emails attached with the purchased PDFs and PDF-invoice, respectively. Step 8: Optional -- Go to download PDF. Step 9: Optional -- Click Open/Download PDF to download PDFs and invoice. See screenshots for above steps: Steps 1~3 Steps 4~6 Step 7 Step 8 Step 9 |
