Sach trang CNTT-TT 2013 full_ver 2.1

1. Information security managementPercentage of organizations that release approved and appliedinformation security regulations44.2Percentage of organizations that release process of computerincident response/handling27.3Percentage of organizations that have employees in charge ofinformation security64.0Percentage of organizations that have plans of informationsecurity training53.1Percentage of organizations that applied insurance for damageof computer attacks14.40.0 10.0 20.0 30.0 40.0 50.0 60.0 70.0Percentage %2. Percentage of applying technical solutions for information securityAverage percentage of applying technical solutions forinformation securityData protection by password and encryption30.529.4Access control, applied biometric technology16.2Hardware, software, system protection solutions42.9Vulnerability scanning and patch management tools21.5Log management, security incidents/events management25.90 5 10 15 20 25 30 35 40 45 50Percentage %3. Percentage of organizations that can detect network attacksAverage percentage of organizations that can detect networkattacks19.4Percentage of organizations that can detect unauthorizedaccess attacks12.1Percentage of organizations that can detect performancedeclining attacks and denial-of-services attacks38.9Percentage of organizations that can detect performancedeclining attacks and denial-of-services attacks19.0Percentage of organizations that can detect data modification orsabotage attacks11.20.0 5.0 10.0 15.0 20.0 25.0 30.0 35.0 40.0 45.0Percentage %Note: According to statistics on the total number of 500 agencies, organizations and businessesthroughout the country in 201284