GB/T 20282-2006

Active

Information security technology - Information system security engineering management requirements

信息安全技术信息系统安全工程管理要求

Standard Type

GBT

ICS

35.020

CCS

L09

Status

Active

Issue Date

2006-05-31

Implementation

2006-12-01

Centralized Committee

国家标准委

Issuing Authority

中华人民共和国国家质量监督检验检疫总局、中国国家标准化管理委员会

Application Summary AI generated

This standard specifies management requirements for the security engineering of information systems, covering the entire lifecycle from planning, design, implementation, to operation and maintenance. It is applied in China to guide organizations in establishing, implementing, and improving security management processes for IT systems, particularly in government, finance, and critical infrastructure sectors. The standard ensures that security engineering activities meet defined management criteria, supporting risk management and compliance with national information security regulations.

Related Standards

GB/T 18903-2002 Information technology--Quality of service:Framework GB/T 18811-2002 Basic glossary of electronic commerce GB/T 5271.9-2001 Information technology--Vocabulary--Part 9:Data communication GB/T 5271.8-2001 Information technology--Vocabulary--Part 8:Security GB/T 5271.28-2001 Information technology--Vocabulary--Part 28:Artificial intelligence--Basic concepts and expert system GB/T 5271.27-2001 Information technology--Vocabulary--Part 27:Office automation GB/T 17964-2000 Information technology--Security techniques--Modes of operation for an n-bit block cipher GB/T 17900-1999 Security requirements for proxy server

Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.