{"id":27889,"date":"2023-12-07T04:48:37","date_gmt":"2023-12-07T04:48:37","guid":{"rendered":"https:\/\/masterskills.org\/blog\/tieu-chuan-iso-iec-270012013-la-gi.html"},"modified":"2023-12-22T16:56:54","modified_gmt":"2023-12-22T09:56:54","slug":"tieu-chuan-iso-iec-270012013-la-gi","status":"publish","type":"post","link":"https:\/\/masterskills.org\/blog\/tieu-chuan-iso-iec-270012013-la-gi.html","title":{"rendered":"Ti\u00eau chu\u1ea9n ISO\/IEC 27001:2013 l\u00e0 g\u00ec?"},"content":{"rendered":"<div class=\"vnbcbc-body vceditor-content wi-active\" data-role=\"content\">\n<figure class=\"VCSortableInPreviewMode\" type=\"Photo\" style=\"\">\n<div><\/div><figcaption class=\"PhotoCMS_Caption\">\n<p data-placeholder=\"[Nh\u1eadp ch\u00fa th\u00edch \u1ea3nh]\" class=\"\">H\u00ecnh minh h\u1ecda (Ngu\u1ed3n: premierit)<\/p>\n<\/figcaption><\/figure>\n<h2><font style=\"line-height: 22px; font-size: 22px;\" color=\"#3d85c6\">Ti\u00eau chu\u1ea9n ISO\/IEC 27001:2013<\/font><\/h2>\n<p><b>Kh\u00e1i ni\u1ec7m<\/b><\/p>\n<p><b>Ti\u00eau chu\u1ea9n ISO\/IEC 27001:2013<\/b> hay <b>Ti\u00eau chu\u1ea9n C\u00f4ng ngh\u1ec7 th\u00f4ng tin &#8211; C\u00e1c k\u0129 thu\u1eadt an to\u00e0n &#8211; H\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed an to\u00e0n th\u00f4ng tin &#8211; C\u00e1c y\u00eau c\u1ea7u<\/b> c\u00f3 t\u00ean ti\u1ebfng Anh l\u00e0: <b>ISO\/IEC 27001:2013 Information technology \u2014 Security techniques \u2014 Information security management systems \u2014 Requirements.<\/b><\/p>\n<p><b>Ti\u00eau chu\u1ea9n SO\/IEC 27001:2013<\/b> l\u00e0 ti\u00eau chu\u1ea9n qui \u0111\u1ecbnh c\u00e1c y\u00eau c\u1ea7u \u0111\u1ed1i v\u1edbi ho\u1ea1t \u0111\u1ed9ng thi\u1ebft l\u1eadp tri\u1ec3n khai, duy tr\u00ec v\u00e0 c\u1ea3i ti\u1ebfn li\u00ean t\u1ee5c h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed an to\u00e0n th\u00f4ng tin trong b\u1ed1i c\u1ea3nh c\u1ee7a m\u1ed9t t\u1ed5 ch\u1ee9c.\u00a0<\/p>\n<p>Ti\u00eau chu\u1ea9n n\u00e0y c\u0169ng bao g\u1ed3m c\u00e1c y\u00eau c\u1ea7u cho vi\u1ec7c \u0111\u00e1nh gi\u00e1 v\u00e0 x\u1eed l\u00ed nh\u1eefng r\u1ee7i ro an to\u00e0n th\u00f4ng tin ph\u00f9 h\u1ee3p v\u1edbi y\u00eau c\u1ea7u c\u1ee7a t\u1ed5 ch\u1ee9c. C\u00e1c y\u00eau c\u1ea7u \u0111\u1eb7t ra trong ti\u00eau chu\u1ea9n n\u00e0y mang t\u00ednh ch\u1ea5t t\u1ed5ng quan v\u00e0 nh\u1eb1m \u00e1p d\u1ee5ng cho t\u1ea5t c\u1ea3 c\u00e1c t\u1ed5 ch\u1ee9c v\u1edbi b\u1ea5t k\u1ec3 lo\u1ea1i h\u00ecnh, qui m\u00f4 hay b\u1ea3n ch\u1ea5t.<\/p>\n<p><i>(Theo International Organization for Standardization)<\/i><\/p>\n<h3><font style=\"line-height: 22px; font-size: 22px;\" color=\"#3d85c6\">Vai tr\u00f2<\/font><\/h3>\n<p>Ng\u00e0y nay, c\u00e1c h\u1ec7 th\u1ed1ng c\u00f4ng ngh\u1ec7 th\u00f4ng tin th\u00e2m nh\u1eadp v\u00e0o t\u1ea5t c\u1ea3 c\u00e1c l\u0129nh v\u1ef1c c\u1ee7a m\u1ed9t t\u1ed5 ch\u1ee9c.\u00a0\u0110\u1eb7c bi\u1ec7t c\u00e1c qui tr\u00ecnh kinh doanh quan tr\u1ecdng th\u01b0\u1eddng kh\u00f4ng th\u1ec3 t\u01b0\u1edfng t\u01b0\u1ee3ng \u0111\u01b0\u1ee3c n\u1ebfu kh\u00f4ng c\u00f3 c\u00f4ng ngh\u1ec7 th\u00f4ng tin.\u00a0<\/p>\n<p>Nh\u01b0ng \u0111i\u1ec1u n\u00e0y c\u0169ng l\u00e0m t\u0103ng nguy c\u01a1 m\u1ea5t d\u1eef li\u1ec7u, \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u b\u00ed m\u1eadt ho\u1eb7c thi\u1ec7t h\u1ea1i cho c\u00e1c h\u1ec7 th\u1ed1ng quan tr\u1ecdng.<\/p>\n<p>ISO \/ IEC 27001: 2013 l\u00e0\u00a0ti\u00eau chu\u1ea9n qu\u1ed1c t\u1ebf h\u00e0ng \u0111\u1ea7u cho c\u00e1c h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed an ninh th\u00f4ng tin.\u00a0N\u00f3 \u00e1p d\u1ee5ng cho c\u00e1c doanh nghi\u1ec7p t\u01b0 nh\u00e2n v\u00e0 c\u00f4ng c\u1ed9ng c\u0169ng nh\u01b0 c\u00e1c t\u1ed5 ch\u1ee9c phi l\u1ee3i nhu\u1eadn v\u00e0 x\u00e1c \u0111\u1ecbnh c\u00e1c y\u00eau c\u1ea7u cho vi\u1ec7c thi\u1ebft l\u1eadp, th\u1ef1c hi\u1ec7n, b\u1ea3o tr\u00ec v\u00e0 c\u1ea3i ti\u1ebfn li\u00ean t\u1ee5c c\u1ee7a m\u1ed9t h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed b\u1ea3o m\u1eadt th\u00f4ng tin.<\/p>\n<p>Ti\u00eau chu\u1ea9n n\u00e0y cung c\u1ea5p m\u1ed9t c\u00e1ch ti\u1ebfp c\u1eadn c\u00f3 h\u1ec7 th\u1ed1ng, c\u00f3 c\u1ea5u tr\u00fac<\/p>\n<p>1. \u0110\u1ec3 t\u0103ng\u00a0t\u00ednh kh\u1ea3 d\u1ee5ng\u00a0c\u1ee7a c\u00e1c h\u1ec7 th\u1ed1ng c\u00f4ng ngh\u1ec7 th\u00f4ng tin c\u1ee7a ri\u00eang t\u1ed5 ch\u1ee9c, bao g\u1ed3m d\u1eef li\u1ec7u v\u00e0 th\u00f4ng tin hi\u1ec7n c\u00f3,<\/p>\n<p>2. \u0110\u1ec3 b\u1ea3o v\u1ec7\u00a0t\u00ednh to\u00e0n v\u1eb9n\u00a0c\u1ee7a th\u00f4ng tin hi\u1ec7n c\u00f3,<\/p>\n<p>3. \u0110\u1ec3 \u0111\u1ea3m b\u1ea3o t\u00ednh b\u1ea3o\u00a0m\u1eadt\u00a0c\u1ee7a d\u1eef li\u1ec7u hi\u1ec7n c\u00f3 v\u00e0 b\u1ea3o v\u1ec7 ch\u00fang kh\u1ecfi b\u1ecb truy c\u1eadp tr\u00e1i ph\u00e9p, c\u0169ng nh\u01b0<\/p>\n<p>4. \u0110\u1ec3 \u0111\u1ea3m b\u1ea3o\u00a0t\u00ednh x\u00e1c th\u1ef1c\u00a0c\u1ee7a th\u00f4ng tin.<\/p>\n<p>5. C\u00e1c t\u1ed5 ch\u1ee9c thu\u1ed9c m\u1ecdi qui m\u00f4 v\u00e0 ng\u00e0nh c\u00f4ng nghi\u1ec7p c\u00f3 th\u1ec3 cung c\u1ea5p b\u1eb1ng ch\u1ee9ng th\u00f4ng qua ch\u1ee9ng nh\u1eadn c\u1ee7a m\u1ed9t t\u1ed5 ch\u1ee9c ch\u1ee9ng nh\u1eadn \u0111\u01b0\u1ee3c c\u00f4ng nh\u1eadn.<\/p>\n<p>+ \u0111\u1ec3 \u0111\u1ea3m b\u1ea3o an to\u00e0n th\u00f4ng tin li\u00ean t\u1ee5c theo chu tr\u00ecnh Act-Do-Check-Act,\u00a0<\/p>\n<p>+ \u0111\u1ec3 nh\u1eadn ra v\u00e0 ki\u1ec3m so\u00e1t r\u1ee7i ro v\u00e0 do \u0111\u00f3 \u0111\u1ec3 \u0111\u1ea1t \u0111\u01b0\u1ee3c c\u1ea3i ti\u1ebfn li\u00ean t\u1ee5c,\u00a0<\/p>\n<p>+ \u0111\u1ec3 b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u b\u00ed m\u1eadt c\u0169ng nh\u01b0\u00a0<\/p>\n<p>+ \u0111\u1ec3 \u0111\u00e1p \u1ee9ng c\u00e1c y\u00eau c\u1ea7u b\u00ean ngo\u00e0i v\u1ec1 t\u00ednh s\u1eb5n c\u00f3, t\u00ednh to\u00e0n v\u1eb9n v\u00e0 b\u1ea3o m\u1eadt c\u1ee7a th\u00f4ng tin, v\u00ed d\u1ee5 nh\u01b0 c\u1ee7a k\u1ebf to\u00e1n vi\u00ean.\u00a0\u00a0<\/p>\n<p><i>(T\u00e0i li\u1ec7u tham kh\u1ea3o: ISO \/ IEC 27001:2013 CNTT H\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed b\u1ea3o m\u1eadt th\u00f4ng tin, t\u1ed5 ch\u1ee9c ISO-CERT.VN)<\/i><\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<div class=\"vnbcbc-sapo\" data-role=\"sapo\">\n                            Ti\u00eau chu\u1ea9n ISO\/IEC 27001:2013 l\u00e0 ti\u00eau chu\u1ea9n qu\u1ed1c t\u1ebf h\u00e0ng \u0111\u1ea7u cho c\u00e1c h\u1ec7 th\u1ed1ng qu\u1ea3n l\u00ed an ninh th\u00f4ng tin.\n                        <\/div>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[416],"tags":[],"_links":{"self":[{"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/posts\/27889"}],"collection":[{"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/comments?post=27889"}],"version-history":[{"count":0,"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/posts\/27889\/revisions"}],"wp:attachment":[{"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/media?parent=27889"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/categories?post=27889"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/masterskills.org\/blog\/wp-json\/wp\/v2\/tags?post=27889"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}