China: National Information Security Standardisation Technical Committee issued Guideline for Information Security Risk Management in Cybersecurity Technologies (GB/T 31722-2025)
Description
National Information Security Standardisation Technical Committee issued Guideline for Information Security Risk Management in Cybersecurity Technologies (GB/T 31722-2025)
On 1 August 2025, the National Information Security Standardisation Technical Committee (TC260) issued the Guideline for Information Security Risk Management in Cybersecurity Technologies (GB/T 31722-2025). The standard, which will take effect on 1 February 2026, will replace GB/T 31722-2015 in its entirety. It applies to organisations that establish and implement their own Information Security Management Systems and outlines methodologies aligned with current international practices for information security risk management.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body