China: State Administration for Market Regulation Security Technology Network Security Operation and Maintenance Implementation Guide (GB/T 45940-2025) enters into force

On 1 February 2026, the State Administration for Market Regulation Security Technology Network Security Operation and Maintenance Implementation Guide (GB/T 45940-2025) enters into force. The Guide establishes a reference framework for cybersecurity operations, centred on six functions. The functions include operations management, identification, defence, monitoring, response, and collaboration. It outlines three primary service models, including fully self-built, jointly-built, and fully managed security operations. The guide specifies requirements for both the providers of cybersecurity operations and the personnel who perform them, and includes an effectiveness evaluation model that assesses implementation, central elements, and outcomes across five maturity levels, from basic to continuously improving. Detailed implementation guidance is provided for each function, such as asset and risk identification, security hardening, and personnel training. It emphasises continuous monitoring through network traffic analysis, abnormal behaviour detection, and data security monitoring. The document details comprehensive response procedures for security incidents, including emergency plans and recovery processes. Collaboration is highlighted as critical, encompassing capability training, supply chain security management, and information sharing. Evaluation methods, including scoring and rating, are prescribed to measure the effectiveness of the security operations. The Guide aims to ensure business continuity, maintain security capabilities, control risks, and meet regulatory requirements through a cycle of assessment and continuous improvement.