Hong Kong

Hong Kong Issues Code of Practice Under New Protection of Critical Infrastructures Ordinance

By David Wong
|
Published: 2026-01-22 20:28

Hong Kong has introduced a new Code of Practice aimed at enhancing the security of critical infrastructures. This initiative is part of the government's ongoing efforts to safeguard computer systems from cyber threats.

Introduction to the New Ordinance

The Hong Kong government has taken a significant step towards bolstering its cybersecurity framework by issuing a new Code of Practice under the recently enacted Protection of Critical Infrastructures (Computer Systems) Ordinance. This ordinance aims to protect essential services and critical infrastructures from the growing threat of cyberattacks, ensuring the resilience and security of the city's vital systems.

Understanding the Code of Practice

The Code of Practice outlines a comprehensive set of guidelines and best practices that organizations managing critical infrastructures must adhere to. This includes sectors such as energy, transportation, healthcare, and telecommunications, which are deemed essential for the functioning of society. The guidelines emphasize risk management, incident response, and continuous monitoring to mitigate potential vulnerabilities in computer systems.

Key Components of the Code

Among the key components of the Code of Practice are the requirements for organizations to conduct regular risk assessments, implement robust security measures, and establish incident response protocols. Organizations are also encouraged to engage in information sharing and collaboration with government agencies and other stakeholders to enhance overall cybersecurity posture.

Government's Role and Support

The Hong Kong government has committed to providing support and resources to organizations affected by this new ordinance. This includes training programs, workshops, and access to cybersecurity tools and technologies. The aim is to create a culture of cybersecurity awareness and preparedness across all sectors, ensuring that organizations are equipped to handle potential cyber threats effectively.

Response from Industry Leaders

Industry leaders have welcomed the introduction of the Code of Practice, recognizing the importance of safeguarding critical infrastructures in an increasingly digital world. Many experts believe that the guidelines will help organizations enhance their security frameworks and better protect sensitive data from cyber threats.

Challenges Ahead

While the Code of Practice is a positive step forward, experts warn that challenges remain. The rapid evolution of cyber threats means that organizations must continuously adapt and update their security measures. Additionally, there is a need for ongoing collaboration between the government and private sector to ensure the effectiveness of the Code.

Conclusion

The issuance of the Code of Practice under the Protection of Critical Infrastructures (Computer Systems) Ordinance marks a pivotal moment in Hong Kong's approach to cybersecurity. As the city navigates the complexities of the digital landscape, the focus on protecting critical infrastructures will be crucial in maintaining public trust and safety. Stakeholders across various sectors must embrace these guidelines and work collaboratively to create a secure environment for all.