摘要
政务单位需要正确实施网络安全控制,有效抑制网络安全风险,落实到位国家各项网络安全要求。由于电子政务领域无专门的法律规范,与电子政务有关的法律法规等政策文件以及安全标准等要求分散在计算机、互联网、信息化建设、软件保护、电子签名等领域,为有效协助政务单位落实国家和有关部门各项网络安全要求,文章基于《中华人民共和国网络安全法》各项原则要求,以网络安全相关法律法规等政策文件为依据,简单总结了政务网络运营者网络安全合规事项,介绍了政务单位网络安全综合合规评估流程,供政务单位参考。
Based on e-government departments need to correctly implement cybersecurity control,effectively restrain cybersecurity risks,put in place all cybersecurity requirements of the state,because of the e-government field without special legal norms,laws and regulations related to the e-government policy documents are scattered in computer,internet,information construction,software protection,electronic signature,and other fields.This paper briefly summarizes the cybersecurity compliance matters of the operators of the government network and information system,and introduces the comprehensive compliance assessment process of the government cybersecurity for the reference of the e-government departments.
作者
荣晓燕
刘海峰
刘国伟
Rong Xiaoyan;Liu Haifeng;Liu Guowei(Beijing Information Security Test and Evaluation Center,Beijing 100101;Beijing Bureau of Economy and Information Technology,Beijing 100744)
出处
《网络空间安全》
2020年第4期30-34,共5页
Cyberspace Security
关键词
网络安全
政务单位
电子政务
信息系统
合规
cybersecurity
administrative unit
E-government
information system
compliance
