blue-check Methods for stepping up response to cybersecurity emergencies in Vietnam

Directive No. 18/CT-TTg dated October 13th, 2022 of the Prime Minister on stepping up response to cybersecurity emergencies in Vietnam
Posted: 14/10/2022 8:33:49 AM | Latest updated: 9/11/2022 9:48:13 AM (GMT+7) | LuatVietnam: 5569 | Vietlaw: 586

This Directive requests Ministries, ministerial agencies, corporations, state corporations which are members of the National Cyber Emergency Response Network to promptly perform some methods for strengthening effectiveness and efficiency of the response to national cybersecurity emergencies.

Especially, the response to cybersecurity emergencies must be proactively performed, including:

- Proactively performing threat hunting and vulnerability scanning on information systems under their management for at least 01 time/6 months;

- Issuing emergency response plans and scenarios for the information systems before December 31, 2022 and promptly updating in case of changes;

- Organizing actual-combat drills at least once a year for level-3 information systems or higher in order to assess the ability to prevent intrusions and promptly detect weaknesses in processes, technologies and people.

- Cybersecurity Emergency Response Teams (CERTs) must be reorganized and put together before December 31, 2022 in a professional and mobile manner, with at least 05 cybersecurity experts (including outsourced experts) to meet standards of cybersecurity skills.

With regard to telecommunications and Internet service providers, the Prime Minister requests them to publish contact information (phone number, email or other communication channels) to receive notices on emergencies on their websites before October 31, 2022; disseminate methods for reporting cybersecurity emergencies to their customers.


Related documents

Not found

Penalty document



Effective date Unknown
Expired date Unknown
Published Vietlaw's Newsletter No. 586

Files attachment

enflag pdficon CT18-13102022TTg[EN].pdf


No data

Information Technology

blue-check Methods for stepping up response to cybersecurity emergencies in Vietnam
blue-check Regulations in details on requirements of cybersecurity
blue-check Addition of cyberinformation security products imported under license
blue-check List of information technology products subject to certification of conformity
blue-check National technical regulation on cryptographic technical specification used in civil cryptography products under IP security products group with IPsec and TLS
blue-check Regarding development of digitalization and cashless payment in schools, hospitals
blue-check Plan for development of personnel for national digital transformation by 2025
blue-check Digitalizaiton program in vocational education
blue-check Guidelines on recognition of and fighting spam messages, spam emails, and spam calls
blue-check New List of key information technology products
blue-check New list of software products
blue-check Basic technical requirements of SOAR products
blue-check Explanation for acts of infiltrating another person's computer network
blue-check Regarding organization of cybersecurity management drills
blue-check Cybersecurity requirements for consumer Internet of Things (CIoT)
blue-check It is required to withhold 10% withholding tax upon hiring customer data management services from foreign organizations
blue-check Criteria for determining IT projects given investment or procurement priority
blue-check Processing of IT products banned from import must be licensed by the Ministry of Information and Communications