In 2017, we completed the review of the standing Practice Guide for Information Security Incident Handling with reference to the ISO/IEC 27000 family of Information Security Management System Standards and promulgated for reference by all our constituents. We also co-organised with the Hong Kong Police Force to run an inter-departmental cyber security drill and walk through the procedures of security events analysis and incident response with our constituents to enhance the overall capability of the Government of the Hong Kong Special Administrative Region in incident management.
In response to the soaring increase of ransomware outbreak during the first half of 2017, we developed dedicated best practices, thematic leaflets, and defensive guidelines for all government users as well as lined up security solutions providers to share with our constituents the latest cyber resilience technologies and best practices to protect information systems from zero day exploit.
GovCERT.HK is an operational member of the Asia Pacific Computer Emergency Response Team (APCERT). APCERT is a coalition of Computer Emergency Response Teams (CERTs) and Computer Security Incident Response Teams (CSIRTs) within the Asia Pacific region. It maintains a trusted network of cyber security experts in the Asia Pacific region to enhance the region’s vigilance against malicious cyber activities and its overall capability to detect, prevent and mitigate such activities.
For more information of APCERT activities, please refer to the APCERT Annual Reports.