中文 English
GB/T 24364-2023 Active National standards

GB/T 24364-2023 Information security technology—Implementation guide for information security risk management

GB/T 24364-2023 Information security technology—Implementation guide for information security risk management

Publish Date: 2023-05-23 Implement Date: 2023-12-01 For services related to genuine standard inquiry, procurement, translation, and other related services in China, please Contact Us

Basic Information

Standard Code: GB/T 24364-2023
Standard Type: National standards
Standard Status: Active
is_force_gb: no
CCS Name: Data encryption
ICS Name: -
Publish Date: 2023-05-23
Implement Date: 2023-12-01
Publisher: 国家市场监督管理总局、国家标准化管理委员会
Technical Committee: 全国信息安全标准化技术委员会(SAC/TC 260)
Pages: 56 pages

Scope

本文件确立了信息安全风险管理的实施框架,描述了信息安全风险管理的原则、保障机制、保障措施、能力和过程,提供了每个管理过程的实施要点和工作形式。本文件适用于各类组织开展信息安全风险管理工作。

Development Information

Drafting Units:

国家信息中心、中国电子科技集团公司第十五研究所、北京安信天行科技有限公司、北京天融信网络安全技术有限公司、中国信息安全测评中心、中国网络安全审查技术与认证中心、深信服科技股份有限公司、北京信息安全测评中心、公安部第一研究所、公安部第三研究所、北京国信京宁信息安全科技有限公司、上海观安信息技术股份有限公司、郑州轻工业大学、河南农业大学、深圳市信息安全管理中心、广州市信息安全测评中心、深圳市龙华区政务服务数据管理局、深圳华晟九思科技有限公司

Drafting Persons:

禄凯、陈永刚、赵增振、葛晓囡、陈青民、杨剑、刘润一、杜宇鸽、陈杨国、刘德林、程瑜琦、李媛、马江涛、李秋香、陈盼、陈一博、张益、刘健、刘丰、任金强、王焱、张锐卿、董安波、刘永杰、朱润酥、高杰、汤志强、朱建兴、李尚号

Word Count: 102 Thousand words Pages: 56 pages

Replace the following standards

GB/Z 24364-2009 Information security technology—Guidelines for information security risk management

Referenced Standards

GB/T 20984-2022 Information security technology—Risk assessment method for information security GB/T 24363-2009 Information security technology—Specifications of emergency response plan for information security GB/T 25069-2022 Information security techniques—Terminology GB/T 29246-2017 Information technology—Security techniques—Information security management systems—Overview and vocabulary GB/T 31722-2015 Information technology—Security techniques—Information security risk management GB/T 38645-2020 Information security techniques—Guide for cybersecurity incident emergency exercises GB/T 31509-2015 Information security technology—Guide of implementation for information security risk assessment

Related Standards

DZ/T 0101.12-1994 Active

DZ/T 0101.12-1994 Geological instrument manufacturing time quota for printed circuit board

Publish Date: 1994-01-27
JJG 204-1980 Active

JJG 204-1980 Meteorological Ventilation Psychrometer

Publish Date: 1980-07-11
SC 53-1980 Active

SC 53-1980 Transfer blade hydraulic steering gear repair quality standard

Publish Date: 1981-07-01
DZ 4-1981 Replaced

DZ 4-1981

Publish Date: 1981-08-20
SC 69-1982 Active

SC 69-1982 ZSS-12 Flash-type seawater desalination production device technical specifications

Publish Date: 1982-01-20
SC 72-1982 Active

SC 72-1982 Steel Fishing Boat Builder Quality Standards and Mooring Equipment Installation Technical Requirements

Publish Date: 1982-03-30
Contact Us