China: Implemented National Standard on Information Security Technology: Cybersecurity Requirements for Critical Information Infrastructure Protection

On 1 May 2023, the “National Standard on Information Security Technology: Cybersecurity Requirements for Critical Information Infrastructure Protection (GB/T 39204-2022)” was implemented. The approval was announced by the Standardization Administration of China on 12 October 2022. The Chinese National Information Security Standardisation Technical Committee (TC260) is in charge of the oversight of this National Standard. The National Standard sets out a number of cybersecurity rules for criticial information infrastructure, including risk analysis and identification, security protection, detection and evaluation, early warning, and incident response.