52ky 发表于 2022-9-11 11:57:34

某市信息安全风险评估工作指南

本工作指南基于《信息安全危险评价指南(征求意见稿)》(国信办综9号)文件中规则的评价步骤和评价过程,对信息安全危险评价过程中具体内容和方法给予进一步的说明,为我的各安排或单位在发展信息安全危险评价相关工作时提供参考。第一章适用范围??5第二章参考基于??6第三章信息安全危险评价概述??73.1基本概念??73.2名词术语??73.3危险评价基本原理??103.3.1危险评价要素联系模型??10....第七章危险评价质量控制??317.1危险评价项目安排??317.2加强项目评定??317.3危险评价过程中的危险控制??327.4危险评价文档的请求??327.5交换与交换??33

(This work guideline is based on the evaluation steps and evaluation process of the rules in the document "Information Security Risk Evaluation Guidelines (Draft for Comment)" (Guo Xin Ban Zong No. 9), and provides further details on the specific content and methods in the information security risk evaluation process. Description, to provide reference for my various arrangements or units in the development of information security risk assessment related work. Chapter 1 Scope of Application Model??10....Chapter 7 Risk Assessment Quality Control??317.1 Risk Assessment Project Arrangement??317.2 Strengthening Project Assessment??317.3 Risk Control During Risk Assessment??327.4 Request for Risk Assessment Documentation??327.5 Exchange with exchange??33)




页: [1]
查看完整版本: 某市信息安全风险评估工作指南