China: Announced TC260 Cybersecurity Operation and Maintenance Guide

On 19 March 2024, the National Information Security Standardization Technical Committee (TC260) issued a national standard titled "Cybersecurity technology - Implementation guide of cybersecurity operation and maintenance". The guide aims to provide a comprehensive framework for organisations to establish, implement, evaluate, and improve their cybersecurity operation and maintenance practices. The guide outlines the necessary conditions for service providers and personnel, details the process for establishing cybersecurity operation and maintenance business, and describes the implementation actions covering management, identification, defence, monitoring, response, and collaboration. Additionally, it introduces an evaluation model to assess the effectiveness of cybersecurity operations, emphasising continuous improvement and compliance with national standards.