HKCNSA 2nd Anniversary Celebration, United in Safeguarding Critical Infrastructure and AI Applications
- 秘書處
- 12 hours ago
- 4 min read
IT PRO Magazine
The Hong Kong China Network Security Association (HKCNSA) marked its second anniversary with a celebration ceremony and luncheon held at the Hyatt Regency Tsim Sha Tsui. The event was officiated by Chief Superintendent Raymond Lam of the Cyber Security and Technology Crime Bureau (CSTCB) of the Hong Kong Police Force; Brad Kwok, Principal Personal Data Officer (Compliance & Enquiry) at the Office of the Privacy Commissioner for Personal Data; and Dr. Peter K. T. Wan, Chairman of Heep Hong Society.
HKCNSA Founding Chairman David Ip expressed heartfelt appreciation for the support received over the past year from various Association units, corporate members, nonprofit organisations (NGOs), the education sector and the government, noting that this collective effort enabled the successful delivery of a series of impactful initiatives that disseminated cybersecurity knowledge and experience across different industries.
Three Key Development Priorities Announced for 2026
Chairman Ip outlined HKCNSA’s three key development priorities for the year ahead. The first is to expand cybersecurity talent cultivation and strengthen the professional pipeline. The second is to help NGOs enhance their cybersecurity readiness to ensure better protection of donor and volunteer personal data. The third is to promote broader industry understanding of the newly enacted Protection of Critical Infrastructures (Computer Systems) Ordinance, enabling organisations across sectors to raise their level of preparedness and compliance. He reiterated that HKCNSA’s work is grounded in unity, and strengthening that unity is what transforms the ecosystem into a more resilient defence.
Building Communication Bridges through Genuine Knowledge Sharing
HKCNSA Vice Chairman and Director of the Critical Infrastructure Committee Wilson Tang noted that the Association is unique in its mission. From its inception, members shared the consensus that the structure should remain simple, with the core purpose of providing high quality knowledge sharing without pressure.
He stressed that communication is essential:
“We hope our members contribute their strengths, share knowledge and best practices. We cannot solve security issues across society and enterprises through casual conversations. If you remain silent, AI will replace you. Sharing is the only way to validate and improve best practices.”
Mr. Tang added that HKCNSA has successfully built extensive communication channels — through workshops, monthly cocktail gatherings, meetings with government officials, participation in industry events and crossvendor knowledge exchanges — all intended to maintain active dialogue within the ecosystem.
Establishing International Standards to Address Cybersecurity Risks
CSTCB Chief Superintendent Raymond Lam warned that the current environment remains precarious, with inadequate cybersecurity measures, lack of standards, absence of backup strategies and numerous human errors. According to the Cyber Security Report 2024, more than 90,000 critical infrastructure cyber assets in Hong Kong were assessed, with 5% identified as having security vulnerabilities. Of the vulnerabilities found, 89% were rated medium to low risk, while 11% were classified as high or critical risk.
He emphasised the need to establish digital security standards aligned with both local and global requirements, supported by internationally recognised certification, adding that this can only be achieved through strong publicprivate collaboration to build a holistic cybersecurity ecosystem.
Heep Hong Society Chairman Dr. Peter Wan praised HKCNSA for its support to NGOs, remarking that cybersecurity is not merely an IT issue but a fundamental governance responsibility for nonprofit organisations.
Leveraging Security Solutions to Protect Critical Infrastructure
The Protection of Critical Infrastructures (Computer Systems) Ordinance, which came into effect on 1 January, applies across a broad spectrum of sectors—including energy, information technology, banking and financial services, land transport, aviation, maritime, healthcare, as well as communications and broadcasting—prompting many CEOs and CIOs to consider whether their critical systems are sufficiently prepared for the future.
Daniel Leung, General Manager for Greater China at HCLSoftware, highlighted the rapid rise of AI‑weaponised cyber threats. He explained that attackers now leverage AI to identify unpatched endpoints across multi‑cloud environments at machine speed, while also using AI to craft highly personalised social engineering attacks capable of bypassing traditional filtering mechanisms.
In response to these risks, HCLSoftware offers a cybersecurity portfolio comprising AppScan for software supply chain protection, BigFix for endpoint resilience, and Uno, a unified observability and incident‑reporting platform. Leung urged organisations to reflect on whether their infrastructure is adequately prepared for such emerging threats.
Responsible Data Use to Secure AI Development
In the AI era, how can privacy and cybersecurity coexist?
Vivien Alyaz, Hong Kong Market Director at OneTrust — a company specialising in data governance and privacy management — said that AI‑era cybersecurity and privacy challenges stem primarily from issues in AI governance.
She stated:
“How can we ensure responsible data usage across all risk domains, while keeping up with the speed and scale required by business?”
OneTrust provides automated and AI‑powered solutions that help organisations implement responsible data usage frameworks, enabling secure and accountable deployment of AI technologies.
Ms. Alyaz reaffirmed:
“By managing AI through responsible data use, we can ensure the security of the information we handle.”
HKCNSA 2nd Anniversary Event Highlights
Source of Information
This content is sourced from IT Pro Original article link:
The above is translated based on the original article. If any part is inconsistent with the original meaning or requires amendment, please contact the Association.
