It is registered
Ministry of Justice of Ukraine
January 28, 2015
No. 90/26535
of December 2, 2014 No. 660
About approval of the Evaluation procedure of condition of security of the state information resources in information, electronic communication and information communications systems
According to Item of 41 part one of article 14 of the Law of Ukraine "About Public service of special communication and information protection of Ukraine" and to the subitem 30 of item 4 of the Regulations on Administration of Public service of special communication and information protection of Ukraine approved by the resolution of the Cabinet of Ministers of Ukraine of September 3, 2014 No. 411, I order:
1. Approve the Evaluation procedure of condition of security of the state information resources in information, electronic communication and information communications systems which is applied.
2. Declare invalid the order of Administration of Public service of special communication and information protection of Ukraine of July 04, 2008 No. 112 "About approval of the Evaluation procedure of condition of security of the state information resources in information, telecommunication and information and telecommunication systems", registered in the Ministry of Justice of Ukraine on July 25, 2008 for No. 690/15381.
3. To the director of the department of special information and telecommunication systems of Administration of Public service of special communication and information protection of Ukraine to provide submission of this order on state registration in the Ministry of Justice of Ukraine according to the Presidential decree of Ukraine of October 3, 1992 to No. 493 "About state registration of regulatory legal acts of the ministries and other executive bodies".
4. This order becomes effective from the date of its official publication.
5. To impose control of execution of this order on the First Deputy Chairman of Public service of special communication and information protection of Ukraine.
Chairman of Service
V. P. Zverev
It is approved: Chairman State regulatory service of Ukraine |
K. Lyapina |
Approved by the Order of Administration of Public service of special communication and information protection of Ukraine of December 2, 2014, No. 660
1. This Procedure determines legal and organizational basis of evaluating condition of security of the state information resources in information, electronic communication and information communications systems of state bodies, local government bodies, the military forming formed according to the laws of Ukraine (further - military forming), the companies, organizations and the organizations irrespective of patterns of ownership.
Action of this Procedure does not extend to systems of special communication.
2. Terms in this Procedure are used in the following values:
assessment (estimation) of condition of security of the state information resources in information, electronic communication and information communications systems (further - security condition assessment) set of the actions directed to identification of threats to the state information resources and prevention of unauthorized actions concerning information in information electronic communication and information communications systems (further - IKS);
assessment (estimation) of security of information in information, electronic communication and information communications systems (further security assessment) - measures for identification in IKS of the technical solutions creating premises for violation of confidentiality, integrity and availability of information which in them is processed.
Other terms are used in the values given in the Laws of Ukraine "About information protection in information communications systems", "About Public service of special communication and information protection of Ukraine".
3. Assessment of condition of security is performed for the purpose of identification of the existing threats to the state information resources in IKS and is component of measures for information protection.
4. Object of assessment of condition of security are the state information resources which are processed in IKS, irrespective of availability in such IKS of end-to-end system of information protection (further - KSZI).
5. In IKS where KSZI with the confirmed compliance are created, assessment of condition of security is performed for the purpose of identification of new threats to the state information resources which arose in use KSZI and not considered in KSZI.
6. In case of identification in IKS where KSZI with the confirmed compliance are created, additional threats to the state information resources which arose for the period operation of KSZI, information on such KSZI is provided to Gosspetssvyaz according to Regulations on the Register information, electronic communication and information communications systems of executive bodies, and also the companies, organizations and the organizations relating to the sphere of their management, No. 688 approved by the resolution of the Cabinet of Ministers of Ukraine of August 03, 2005.
7. Security condition assessment in state body, local government body, military forming, at the company, in organization, the organization irrespective of patterns of ownership is performed by the State center of cyberprotection of Public service of special communication and information protection of Ukraine (further - DTsKZ of Gosspetssvyaz).
8. By results of assessment of condition of security the appraisal report of condition of security of the state information resources in IKS (further the Act) according to appendix where results of work of the commission and the recommendation about increase in level of security of the state information resources which affirms the chief of DTsKZ of Gosspetssvyaz are stated is drawn up.
9. For the purpose of security condition assessment:
1) Administration of Gosspetssvyaz:
performs planning of evaluating condition of security in public authorities, local government bodies, military forming, at the companies, in organizations and the organizations irrespective of patterns of ownership;
determines and will promulgate the list of specialized software and the software and hardware tools used for evaluating security on the website of Gosspetssvyaz;
2) Gosspetssvyaz DTsKZ:
Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info
Database include more 50000 documents. You can find needed documents using search system. For effective work you can mix any on documents parameters: country, documents type, date range, teams or tags.
More about search system
If you cannot find the required document, or you do not know where to begin, go to Help section.
In this section, we’ve tried to describe in detail the features and capabilities of the system, as well as the most effective techniques for working with the database.
You also may open the section Frequently asked questions. This section provides answers to questions set by users.