Organizational structure and payroll of the Authority of Information Security in Vietnam

Organizational structure and payroll of the Authority of Information Security in Vietnam (Internet image)

Regarding this issue, LawNet would like to answer as follows:

1. Organizational structure and payroll of the Authority of Information Security in Vietnam

* Department leaders:

The Department of Information Security has a Director and Deputy Directors.

The Director is responsible before the Minister and before the law for the results of implementing assigned functions, tasks, and powers.

The Deputy Director assists the Director in directing and administering the Department's work areas and is responsible before the Director and the law for the implementation of assigned tasks.

* Organizing committee:

- Rooms:

+ Planning and Development Department;

+ Department of Information and International Cooperation;

+ Legal and Inspection Department;

+ Information system security department;

+ Office.

- Subordinate public service units:

+ Vietnam Cyber Emergency Response Center (VNCERT/CC);

+ National Cyber Security Monitoring Center (NCSC).

The functions, tasks, powers, and organizational structure of affiliated public service units are developed by the Director and submitted to the Minister for decision.

The functions, tasks, and powers of the departments are decided by the Director of the Department.

The working relationship between units under and under the Department is decided by the Director of the Department.

* Payroll:

- The civil servant payroll is developed by the Director of the Department and submitted to the Minister for decision.

- Staffing of public service units under the Department is decided by the head of the service unit or submitted to the competent authority for decision on the basis of the level of financial autonomy assigned according to the provisions of law. .

(Article 3 of Decision 1499/QD-BTTTT 2023)

2. Duties and powers of the Authority of Information Security in Vietnam

The duties and powers of the Authority of Information Security in Vietnam are specified in Article 2 of Decision 1499/QD-BTTTT 2023, including:

- Advise and assist the Minister of Information and Communications in implementing state management

+ Develop and submit to the Minister for promulgation or let the Minister submit to competent authorities for promulgation of legal documents, strategies, planning, long-term, medium-term, and annual development plans; programs, schemes, and projects on network information security; solutions to ensure network information security;

+ Evaluate documents and submit them to the Minister to issue, reissue, extend, amend, supplement, temporarily suspend, and revoke business licenses for network information security products and services (except for civil cryptography products and services; network security products and services; and electronic signature authentication services).

- Directly organize and implement state management.

+ Guide, organize, inspect, and coordinate inspection of the implementation of legal documents, strategies, planning, plans, programs, schemes, and projects on network information security and solutions to ensure network information security;

+ Issue and re-issue licenses to import cyber information security products according to the provisions of law; Appraisal of information system security level proposal dossiers;

+ Issue, re-issue, renew, and revoke identification name certificates for organizations and individuals to use for advertising purposes by text messages and phone calls; Manage advertising activities via text messages, emails, and phone calls; manage activities using identifiers for advertising activities via text messages and phone calls;

+ Organize and implement quality management of network information security products and services (except for civil cryptography products and services and network security products and services); Manage, test, evaluate, certify, and announce compliance with standards and regulations on network information security according to regulations;

+ Manage safety monitoring of network information systems; manage inspection and assessment of network information security; manage safe software development in accordance with the law;

+ Monitor, collect, analyze, forecast, and warn about risks, malicious code, cyber attack incidents, and trends in activities and developments in Vietnam's cyberspace. Acting as a focal point to direct businesses providing services on telecommunications networks, services on the Internet, value-added services in cyberspace, and information system administrators to remove and prevent information that violates the law and handle cyber attacks according to regulations;

+ Organize the management and coordination of network information security incident response activities nationwide; preside over coordination of emergency response to ensure national network information security in accordance with the law; is the focal point of the Ministry of Information and Communications to coordinate with agencies and organizations in responding to incidents and ensuring network information security;

+ Preside, guide, and organize the implementation of measures to prevent and control spam messages and spam emails; coordinate processing to prevent spam messages and spam emails; build and operate a technical system for managing identifiers and technical systems to support the prevention and suppression of spam messages and spam emails;

+ Build and deploy technical systems to support activities to prevent child abuse content in cyberspace; Coordinate agencies, organizations, and businesses to prevent sources of spreading child abuse information in cyberspace;

+ Preside and coordinate to guide the organization in ensuring network information security for agencies, organizations, and businesses; Provide guidance on transferring technical solutions, technology, and processes to ensure network information security. Develop criteria, indicators, and instructions; organize the evaluation of a set of indicators to ensure network information security for state agencies, organizations, and businesses;

+ Preside, guide, and organize the implementation and inspection of ensuring data security and protecting personal information according to the provisions of law;

+ Preside over the appraisal of project objectives, techniques, technology, scale, solutions, and results according to the provisions of law for investment policies in digital transformation projects, information technology application of the National Digital Transformation Department, under the decision authority of the Minister; lead the appraisal of basic design, objectives, techniques, technology, scale, solutions, and output results for feasibility study reports of digital transformation investment projects, IT applications; procurement tasks; outlines and detailed estimates for information technology application activities; hiring information technology services using regular funding from the National Digital Transformation Department, falling under the decision-making authority of the Minister; Carry out inspection and determine the level of compliance with basic/preliminary designs and construction designs of information systems and digital platforms of the National Digital Transformation Agency;

+ Preside and coordinate with relevant agencies and units to foster, train, and develop human resources in information security; issue certificates and certifications on information security and information technology according to the provisions of the law; propagate and disseminate laws; raise awareness, skills, and responsibility for network information security; Organize activities to promote network information security;

+ Preside and coordinate with relevant agencies and units to carry out scientific and technological research, new technology, and international cooperation on network information security as assigned and decentralized by the Minister;

+ Collect, manage, and use fees and charges for network information security according to the provisions of the law; Organize and manage the provision of public services specialized in cyber information security in accordance with the functions and tasks of the Department according to the provisions of law;

+ Guide, monitor, and coordinate the management of activities of associations and associations operating in cyber information security according to the provisions of law and the assignment of the Minister;

+ Be a specialized unit in charge of network information security of the Ministry of Information and Communications.

- Coordinate the implementation of state management tasks:

+ Coordinate with relevant agencies and units of the Ministry of Public Security, the Ministry of National Defense, the Government Cipher Committee, and other relevant agencies in: ensuring national defense, security, social order, and safety, and ensuring network information security according to the provisions of law.

+ Participate in developing standards, technical regulations, economic-technical norms, pricing mechanisms and policies, and price frames for public services in the field of network information security.

+ Coordinate the handling of information that violates the law on the Internet.

- Carry out internal administration work

+ Research and apply science and technology in network information security management activities; Organize the implementation of administrative reform, administrative procedure reform, information technology applications, and digital transformation to serve the Department's activities according to the programs and plans of the Government and the Ministry of Information and Communications;

+ Manage the organizational structure, civil servants, public employees, and workers; Implement policies, salary regimes, and other regimes for civil servants, public employees, and employees under the management of the Department according to the provisions of the law and decentralization of the Minister;

+ Manage finances, assets, records, documents, and other assigned resources according to the provisions of the law and the decentralization of the Minister.

- Perform other tasks as prescribed by law or assigned by the Minister.

>> CLICK HERE TO READ THIS ARTICLE IN VIETNAMESE