China: State Administration for Market Regulation adopted Security Technology Network Security Operation and Maintenance Implementation Guide (GB/T 45940-2025)

On 1 August 2025, the State Administration for Market Regulation adopted the National Information Security Standardisation Technical Committee's (TC260) Security Technology Network Security Operation and Maintenance Implementation Guide (GB/T 45940-2025). The Guide establishes a reference framework for cybersecurity operations, centred on six functions. The functions include operations management, identification, defence, monitoring, response, and collaboration. It outlines three primary service models, including fully self-built, jointly-built, and fully managed security operations. The guide specifies requirements for both the providers of cybersecurity operations and the personnel who perform them, and includes an effectiveness evaluation model that assesses implementation, central elements, and outcomes across five maturity levels, from basic to continuously improving. Detailed implementation guidance is provided for each function, such as asset and risk identification, security hardening, and personnel training. It emphasises continuous monitoring through network traffic analysis, abnormal behaviour detection, and data security monitoring. The document details comprehensive response procedures for security incidents, including emergency plans and recovery processes. The Guide enters into force on 1 February 2026.