The Prime Minister requires that 100% of information systems must be secured at the appropriate level.
The Prime Minister requested that leaders of ministries, branches and localities take responsibility for ensuring information system security at all levels, preventing information insecurity, information leakage, personal data and state secrets.
Prime Minister Pham Minh Chinh has just signed a Directive requiring compliance with legal regulations and strengthening information system security at all levels.
Ensuring information system security at each level is a key, core measure to protect information systems according to the provisions of the Law on Network Information Security.
Besides the achieved results, nearly 40% of information systems of ministries, ministerial-level agencies, government agencies and localities have not completed the approval of information system security levels.
Most information systems approved for information security levels have not fully implemented security assurance plans according to the approved level proposal documents. Many agencies and localities have not complied with legal regulations on ensuring information system security according to levels.
The Prime Minister requested that leaders of ministries, branches, localities and units directly direct and take charge of information security work in the operations of their agencies and localities. Leaders of ministries, branches, localities and units are responsible before the Prime Minister and the law if units under their management do not comply with legal regulations on ensuring information system security at all levels or allow information insecurity, information disclosure, personal data and state secrets to occur.
The Prime Minister requires that 100% of information systems in the process of design, construction, upgrading, and expansion must have their information system security level approved before being put into operation and exploitation and fully implement information security assurance plans according to the approved level proposal documents.
Review, compile statistics, and update the list of information systems under management; ensure that 100% of information systems from level 1 to level 5 (if any) in operation must have their information system security level approved.
Prioritize the deployment of information systems on digital infrastructures (such as Data Centers, Cloud Computing services) that have fully implemented information security plans to inherit existing information security measures.
Regularly and effectively use information security support platforms provided by the Ministry of Information and Communications to gradually digitally transform state management activities and law enforcement on network information security within the scope of management.
Organize effective, practical, regular and continuous implementation of information security assurance work according to the 4-layer model, especially improving the capacity of the professional monitoring and protection layer and maintaining continuous and stable connection and information sharing with the National Cyber Security Monitoring Center under the Department of Information Security, Ministry of Information and Communications. Prioritize the use of network information security products, solutions and services produced or mastered by Vietnamese enterprises.
The Prime Minister requested the Ministry of Information and Communications to be responsible for developing, disseminating, training on the use and maintaining the operation of platforms to support information security assurance. The Ministry needs to evaluate and rank the work of ensuring information system security according to the level of ministries, branches and localities through the Platform to support management of ensuring information system security according to level.
The Ministry of Information and Communications develops and issues a Handbook on compliance with legal regulations and enhancing information system security at all levels.
The Prime Minister assigned the Ministry of Information and Communications to strengthen inspection and examination of compliance with legal regulations on information security at state agencies and organizations; and enterprises deploying digital platforms to serve digital transformation, develop e-Government, digital government, digital economy, and digital society.
Enterprises providing digital infrastructure services, telecommunications services, Internet and other related enterprises in Vietnam. Strictly handle agencies, organizations and enterprises that violate the law on network information security.
Network information security enterprises research and improve network information security products and services provided by enterprises, aiming to integrate many solutions and services to ensure network information security to meet technical requirements and comply with legal regulations.
Enterprises providing telecommunications and Internet services determine the implementation of basic network information security measures to protect all users...
