Professional Development - IT Security Policy and Guidelines

Office of the Government Chief Information Officer, The Government of the Hong Kong Special Administrative Region

	Professional Development > IT Security Policy and Guidelines

Documents on IT Security Policy and Guidelines

Baseline IT Security Policy (S17)

This document sets the baseline standards of IT security policy for Government bureaux/departments. It states what aspects are of paramount importance.

Click here to download PDF file of Baseline IT Security Policy (294KB)

IT Security Guidelines (G3)

This document introduces concepts relating to IT security and elaborates further on the Baseline IT Security Policy.

Click here to download PDF file of IT Security Guidelines (1,648KB)

Internet Gateway Security Guidelines (G50)

This document acts as a supplementary document to IT Security Guidelines to provide guidelines on Internet gateway security.

Click here to download PDF file of Internet Gateway Security Guidelines (350KB)

Security Risk Assessment & Audit Guidelines (G51)

This document acts as a supplementary document to IT Security Guidelines to give an introduction to a generic reference model for IT security risk assessment and security audit.

Click here to download PDF file of Security Risk Assessment & Audit Guidelines (378KB)

Information Security Incident Handling Guidelines (G54)

This document acts as a supplementary document to IT Security Guidelines to provide reference for the planning and preparation for, the detection of, and the response to information security incidents.

Click here to download PDF file of Information Security Incident Handling Guidelines (342KB)

( To view and print the PDF document, you need to use an Adobe Acrobat Reader. Please click here to download if necessary. )

Top

2003

| Important notices

Last review date : 30 September 2007