By the end of 2025: Does 100% of the monitoring and control centers in smart urban areas have someone responsible for information security?

Main Content

• What is the goal of implementing the Project on Information Security for Smart Cities in Vietnam in the period of 2022-2025?
• By the end of 2025, will all intelligent monitoring and control centers have someone responsible for information security?
• What solutions should be implemented to ensure information security for smart cities in Vietnam?

What is the goal of implementing the Project on Information Security for Smart Cities in Vietnam in the period of 2022-2025?

According to subsection 1, Section I of the Scheme issued together with Decision 1014/QD-BTTTT in 2022 issued by the Ministry of Information and Communication on June 2, 2022, the overall objectives of the Scheme are set as follows:

- Ensuring information security for smart cities Vietnam is based on the implementation of information security solutions that harmoniously and fully combine elements: people, processes, and technology right from the design and construction stages. building the system, and conducting it regularly and continuously throughout the process of managing, exploiting and operating the system.

- Deploying information security for smart cities in Vietnam synchronously with four layers of protection, including: on-site forces; professional supervision and protection; inspect and evaluate information security; connect and share information.

- Identify important information systems that need to be protected and apply appropriate technical and management measures to ensure information security for those systems.

- Ensure readiness to respond and promptly overcome information insecurity incidents in smart cities.

- Focus on training human resources on information security for smart city development; strengthen propaganda, dissemination and awareness raising on information security assurance for smart cities.

By the end of 2025: Does 100% of the monitoring and control centers in smart urban areas have someone responsible for information security?

By the end of 2025, will all intelligent monitoring and control centers have someone responsible for information security?

Pursuant to subsection 1, Section I of the Scheme issued together with Decision 1014/QD-BTTTT in 2022 issued by the Ministry of Information and Communications on June 2, 2022, there are a number of specific goals that need to be achieved by the end of the year. By the end of 2025 in order to ensure information security for smart cities as follows:

- 100% of intelligent monitoring and administration centers (hereinafter referred to as IOCs - including: IOCs of provinces and centrally run cities; IOCs of urban centers of provinces and centrally run cities and low-level IOCs) more) have full-time staff or hire experts to be responsible for information security.

- 100% IOC is monitored and protected by professional services of information security organizations or businesses.

- 100% of IOCs are tested and evaluated for network information security before being put into use, when upgrading, changing, and periodically according to regulations.

- 100% IOC connects and shares warning information, risks, weaknesses, information security holes, malicious code.

- 100% of IOCs are classified, identified, approved the proposed information system security level and fully implemented the plan to ensure information system security by level.

- 100% of IOCs have developed and are ready to promptly deploy plans to respond to network information security incidents when an information insecurity incident occurs. - 100% of IOC operators are trained in basic information security on a large scale. 100% of IOC's information security officers are highly trained. - 100% of users of smart city services and utilities are propagated, disseminated, and raised awareness of information security.

What solutions should be implemented to ensure information security for smart cities in Vietnam?

Pursuant to Section II of the Scheme promulgated together with Decision 1014/QD-BTTTT in 2022 issued by the Ministry of Information and Communication on June 2, 2022, which stipulates the tasks and solutions to be implemented to ensure Information security for smart cities is as follows:

- Review, amend and supplement according to their competence or propose competent authorities to amend and supplement the legal corridor and policies to support agencies and organizations involved in the work of ensuring safety. All information for smart city.

- Hire experts or appoint a full-time officer responsible for information security in the IOC.

- Build and complete the information security monitoring system for IOCs in operation before June 30, 2023. Carry out regular and continuous monitoring to protect the IOC against information security threats.

- Periodically conduct inspection and assessment of information security for IOCs (six months for IOCs of provinces and centrally run cities; 12 months for IOCs of urban centers of provinces and centrally run cities, and lower level IOC). It is recommended to use the services of organizations or businesses that are independent of the IOC's monitoring, protection and on-site force organization/business.

- Connect and share information on warnings, risks, weaknesses, information security holes, malicious codes between the IOC and the provincial information security monitoring center/service/platform (SOC), central cities. SOCs of provinces and centrally run cities connect and share the above information with the National Cybersecurity Monitoring Center.

- Develop and approve level proposals for IOCs according to the provisions of the Cyberinformation Security Law and current guiding decrees and circulars.

- Develop and be ready to promptly deploy plans to respond to network information security incidents when an information insecurity incident occurs to the IOC.

- Organize basic training on information security for all staff involved in the operation and operation of the IOC.

- Organize training, intensive training for staff in charge of information security for the IOC.

- Develop concise, intuitive documents based on real-life situations and incidents to propagate, disseminate, and raise awareness of, ensuring information safety of users of smart city services and utilities. .

- Research, amend and supplement information security assurance into layers in the smart urban development architectural framework suitable to the actual situation of each locality.

Thus, in order to implement the Project to ensure information security for smart cities in the period from 2022 to 2025, it is necessary to follow the solutions and tasks mentioned above.