of December 9, 2024 No. 746
About approval of Requirements to creation of systems of cyber security of objects of critical information infrastructure of the Kyrgyz Republic and to ensuring their functioning
According to Item 7 of part 1 of article 6 of the Law of the Kyrgyz Republic "About cyber security of the Kyrgyz Republic", articles 13, of the 17th constitutional Law of the Kyrgyz Republic "About the Cabinet of Ministers of the Kyrgyz Republic" the Cabinet of Ministers of the Kyrgyz Republic decides:
1. Approve Requirements to creation of systems of cyber security of objects of critical information infrastructure of the Kyrgyz Republic and ensuring their functioning according to appendix.
2. To subjects of critical information infrastructure to take the measures following from the Requirements approved by this resolution at the expense of own means.
3. To impose control of execution of this resolution on authorized state body in the field of ensuring cyber security.
4. This resolution becomes effective after fifteen days from the date of official publication.
Chairman of the Cabinet of Ministers of the Kyrgyz Republic
A. Zhaparov
Appendix
to the Resolution of the Cabinet of Ministers of the Kyrgyz Republic of December 9, 2024 No. 746
1. These Requirements establish procedure for creation by subjects of critical information infrastructure of the Kyrgyz Republic (further - KII) systems of cyber security of objects of KII (further - systems of cyber security) and ensuring their functioning taking into account the legislation of the Kyrgyz Republic.
2. Systems of cyber security are created by subjects of KII and include the legal, organizational, technical and other measures aimed at providing cyber security of objects of KII.
3. Creation and functioning of systems of cyber security shall be aimed at providing steady functioning of objects of KII.
Systems of cyber security are created concerning all objects of KII including operated in separate divisions (branches, representations) of the subject of KII.
4. Systems of cyber security include forces and means of ensuring of cyber security of objects of KII.
Treat forces of ensuring cyber security of objects of KII:
- head of the subject of KII;
- divisions of cyber security and/or officer of cyber security of the subject of KII;
- divisions and/or the workers operating objects of KII;
- divisions and/or the workers providing functioning (maintenance, servicing, repair) of objects of KII;
- other divisions and/or workers participating in ensuring cyber security of objects of KII.
The program, hardware-software and other means applied to ensuring cyber security of objects of KII belong to means of ensuring of cyber security of objects of KII.
5. Systems of cyber security shall function according to the organizational and administrative documents on ensuring cyber security of objects of KII developed by subjects of KII according to the legislation of the Kyrgyz Republic in the field of ensuring cyber security and other regulating documents of the Kyrgyz Republic in the field of ensuring cyber security (further - organizational and administrative documents on cyber security).
6. Systems of cyber security shall provide:
- prevention of illegal information access, KII processed by objects, destructions of such information, its modification, blocking, copying, provision and distribution, and also other wrongful acts concerning such information;
- implementation of continuous condition monitoring of cyber security of object of KII;
- non-admission of impact on technical means of information processing as a result of which functioning of objects of KII can be broken and stopped;
- recovery of functioning of objects of KII, including due to creation and storage of backup copies;
- continuous interaction with authorized state body in the field of ensuring cyber security.
7. The created systems of cyber security shall include requirements imposed to:
- to forces of ensuring cyber security of objects of KII;
- to means of ensuring of cyber security of objects of KII;
- to organizational and administrative documents on cyber security;
- organizations of works on ensuring cyber security of objects of KII.
8. The head of the subject of KII creates system of cyber security, will organize and controls its functioning.
9. The head of the subject of KII approves structure and structure of system of cyber security, function of her participants when ensuring cyber security of object of KII, and also determines features of activities of the subject of KII.
The created system of cyber security shall include divisions of cyber security and/or officers of cyber security of objects of KII, including in separate divisions (branches, representations) of subjects of KII in which objects of KII are operated.
10. The head of the subject of KII creates or determines the structural division responsible for ensuring cyber security of objects of KII (further - structural division by cyber security) and assigns the officer of cyber security of objects of KII.
On cyber security and/or the officer of cyber security the following functions shall perform structural division:
- develop organizational and administrative documents on ensuring cyber security and make offers on their enhancement;
- carry out the analysis of cyberthreats concerning objects of KII and reveal vulnerabilities in them;
- realize requirements for ensuring cyber security of objects of KII;
- provide realization of organizational measures and operation of information security products according to requirements for cyber security;
- perform response to cyberincidents;
- organize carrying out internal audit of cyber security of objects of KII;
- prepare suggestions for improvement of functioning of systems of cyber security of objects of KII.
11. According to the decision of the head of the subject of KII in separate divisions (branches, representations) of the subject of KII in which objects of KII are operated are created structural divisions (are determined) by cyber security and/or the officer of cyber security is assigned.
Coordination and control of accomplishment of functions on ensuring cyber security of separate divisions (branches, representations) are performed by structural divisions on cyber security or the officer of cyber security of the subject of KII.
12. Employees of structural division on cyber security or the officer of cyber security shall conform to the following requirements:
Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info
Database include more 50000 documents. You can find needed documents using search system. For effective work you can mix any on documents parameters: country, documents type, date range, teams or tags.
More about search system
If you cannot find the required document, or you do not know where to begin, go to Help section.
In this section, we’ve tried to describe in detail the features and capabilities of the system, as well as the most effective techniques for working with the database.
You also may open the section Frequently asked questions. This section provides answers to questions set by users.