Guidelines

In the field of information security of classified information, the Directorate has prepared the following guidelines for dealing with communication and information systems:

  • Guidelines for the Organization and Management with security of Communication and Information Systems (CIS)
  • Guidelines for the Security Approval of Security Accreditation of Communication and Information Systems (CIS)
  • Guidelines for Security Risk Assessment and Risk Management of Communication and Information Systems (CIS)
  • Guidelines for the Development of Security Requirement Statements (SRSs)
  • Guidelines for the Structure and Content of Security Operating Procedures (SecOps) for Communication and Information Systems (CIS)

In the area of information security of classified information, for proper implementation of security operational procedures Directorate has developed:

  • Guidelines for use of crypto-communication systems according to NATO/EU security standards
  • The draft document on guidelines for implementing the policy on IT security system of Directorate for Security of Classified Information
  • Guidelines for TEMPEST zoning in the field of information security

These guidelines are mandatory for use in the registers of the Directorate in the ministries and other state authorities.

National legislation and laws that governing the protection of classified information in accordance with the security policies of NATO and the EU, contained in:

  • Basic security documents C-M (2002) 49 and C-M (2002) 50 and their accompanying directives and amendments and recharge the basic documents of NATO
  • The decision of the EU Council No.2001/264/EC from 19/03/2001 and safety regulations in all aspects of security and their amend