Key Benefits:
(The 45th ordinary meeting of the Government of Beijing, 9 November 2005 considered the adoption of Decree No. 163 of 11 November 2005 on the Government of the People of Beijing, which came into force on 1 January 2006) Article 1 strengthens the security management of the network of public services in the city and the information system (hereinafter referred to as the network and information systems) and sets this provision in line with the relevant provisions of the State. Article 2 The public service network and information systems referred to in this provision refer to the network and information systems provided by the executive and business units of the city for the administration, transport, health, water supply, electricity, heating, communications, radio television and other public services. Article 3 provides for the integrated coordination and monitoring of the management of networks and information systems in the current administration area, in both urban and district, district information authorities. The relevant branches of government, such as public security, national security and quality technical oversight, are governed by the law in accordance with their respective responsibilities. Article IV (i) Clearing the heads and competent authorities of the network and information system security, with staff with corresponding capacity; (ii) The establishment of a sound network and a system of responsibility for the safe management of information systems, the development of management systems and operational protocols, and regular inspections of implementation; (iii) Financial inputs to secure web and information systems; (iv) Regular networking and information systems safety education and training. Article 5 The municipal information management authorities should harmonize planning and organizing security infrastructure such as safety assessment, e-creditation, disaster backup and emergency response to the relevant Government departments. Article 6. The level of network and information system security is divided into five levels: (i) At the first level, autonomous protection is exercised by the operating units; (ii) The level of protection, which is guided by the guidance of the relevant authorities; (iii) The third level is to monitor the level of protection, which is protected by the operating units under the supervision of the desk oversight sector; (iv) Level IV is mandatory protection and is protected by the operating units under the mandatory supervision of the prosecution; (v) Level V is the exclusive protection level, which is protected by the operating units under the exclusive control of the prosecution. Article 7. The operating units shall determine the safety level of the network and information systems in accordance with the management norms and technical standards of the security hierarchy and build upon the requirements of the security hierarchy protection system. The network and the information system security hierarchy are identified at the third, fourth and fifth levels, and the operating units should make the security hierarchy available. Among them, networks and information systems operating units involving e-government should be reported to the municipal information-ification authorities; other operating units should be reported to the municipal public security sector. The municipal information-policy authorities, the municipal public security sector should provide an assessment of the network and the level of information system security within 30 days and provide a review of the views. Article 8. When the operating unit selects security products associated with information systems or selects services such as safety assessment, electronic certification, it should be in line with the technical norms of the network and the security management of information systems in the country and in this city. Government procurement should be carried out in accordance with the law when the network used to invest in financial funds is selected for security products and services. Article 9. The operating units shall provide for information systems and information data in accordance with the safety management requirements of networks and information systems. Article 10 The operating units should develop information systems security emergency preparedness and conduct regular performance. The relevant administrative authorities of the municipalities and districts, the communes, should organize networks and information systems security emergencies in the relevant industries, organize and coordinate the implementation of emergency preparedness cases by relevant units. Article 11. After a network and information systems security incident, the operating units should take swift measures to reduce the level of damage, prevent the expansion of incidents, preserve the relevant records and report to the same-tier information authorities as required. Article 12 The Information Security Emergency Relief Services Organization should publish relief calls and provide relief services in a timely manner when requested. Article 13. In violation of this provision, the operating unit has one of the following cases, which is being corrected by the municipal or district, district information-management authorities, giving warnings that, depending on the circumstances, a fine of up to 30,000 dollars. (i) In violation of article IV of this provision, no security management system has been established and implemented as required; (ii) In violation of article 9 of this provision, no information systems and information data are required; (iii) In violation of article 10, paragraph 1, of the present article, the establishment of a pre-emptory case for cyber and information systems security, as required; (iv) In violation of article 11 of the present article, the security of cyber and information systems is hidden, false or delayed. In violation of the provisions of the preceding paragraph, municipal or district, district information authorities may inform the responsible units; cause significant losses, administrative responsibility of the principal head of the responsible unit or the inspectorate in accordance with the law. Article 14 deals with public safety, national security, disclosure of State secrets and other violations of the provisions of laws, regulations and regulations, by law, by public security, national security, confidentiality and other oversight authorities, which constitute crimes, and by law. Article 15. The State and the city have special provisions for networks and information systems involving State secrets, national security. Article 16 |
