The workflow for classified protection includes classification, filing, assessment, construction and rectification, and supervision and review.

1. Preparation of the filing documents includes the classification report, filing form, network and information security commitment letter, emergency contact registration form for network security level protection, review opinions, scanned copies of relevant original certificates, and other filing materials (depending on the specific requirements of each district branch for filing documents). The above-mentioned paper materials are for submission when picking up the filing certificate. Generally, it takes about 5 working days.

2 is to invite three individuals to organize a grading review meeting for the information system's classification status, to discuss the rationality of the information system classification, and to modify and confirm related filing materials. The final signed review opinions require 1 working day.

3. Online submission of filing materials for recordation is available. The recordation unit can access the reservation platform for security protection recordation via the internet using a browser. Register and apply for an account for your unit! Registration information will be under review for a few working days, after which the download address for the software, as well as login username and password, will be issued! Use the "Check Registration Result" feature to inquire about the review status of your registration information, and upon "Review Passed," log in with the provided username and password! Click on the recordation application, fill in the recordation information, and upload the relevant recordation materials. After the materials are reviewed, you will be notified of the time to collect the recordation certificate, and simultaneously submit the paper version of the recordation materials. After receiving the recordation certificate, send the electronic version to the assessment institution, who will handle the entry assessment registration. The time required varies based on the speed of review, generally within 10 working days.

4. Gap analysis is conducted based on the requirements of the Level Protection Evaluation, including the work of level protection evaluation and vulnerability scanning, penetration testing (initial assessment), and issuance of gap analysis reports and rectification suggestions, which generally takes about 10 working days.

5. It involves safety rectification, where the registered unit conducts information system rectification based on the rectification requirements and in combination with the company's own situation. The specifics of the rectification are determined based on the actual system conditions of the registered unit.

6. It is a level re-evaluation, also known as a retest, which typically requires 7 working days.

7. Typically, it takes 15 working days to draft the evaluation report.

8. The evaluation report is submitted, the evaluation body seals the report and provides it to the registration unit, who then submits it to the Cybersecurity Division. The entire project is concluded. Typically, it takes 10 working days.

The entire process of the level protection work will last approximately 2-3 months, with the specific duration depending on the actual situation of the system.