Mr. Ngo Quang Huy

Deputy Director, VNCERT

Mr. Ngo Quang Huy

Deputy Director, VNCERT

Biography

Mr. Ngo Quang Huy is the Deputy Director of VNCERT Center, a Government CyberSecurity Coodination Center which belong to the Ministry of Information and Communications of Vietnam (MIC).

VNCERT is a Government’s agency who has its main functions are: coordination all information security organizations to response to cyber security incidents in the whole Vietnam; IT security monitoring for e-government systems of Vietnam and the computer networks over the country; to release watch and warning alerts to community; to play main role in government network system protection in Vietnam.  VNCERT also provide contribution in regulating and making policies, strategies, master plans, projects to promote and improving information security in Vietnam. VNCERT is the contact point of Vietnam in cybersecurity international cooperation. VNCERT is the body who help Minister of MIC to implement the functions of MIC in technical deployment of national cybersecurity activities.

As a leader of VNCERT, Mr. Huy has been leading a network of incident response teams to protect the most critical information systems in Vietnam.

Dr. Ngo Quang Huy is a researcher, developer and implementer of information security inspection and control tools and solutions since 2000 in service of national defense, vital agencies and businesses. Since 2006, Ngo Quang Huy has been working at the Vietnam Computer Emergency Response Team, involved in the development of a number of standards, guidelines, procedures and consultancy for developing and implementing a safety management system. In line with the ISO 27001 standard, the National Network Security Surveillance System has been deployed for many key agencies such as the Government Office, the Ministry of Foreign Affairs, the Ministry of Information and Communications, and The Communist Party newspaper, the Farmers’ Association and many localities throughout the country, etc.

Topic:

The status quo and solutions for monitoring and tightening data security for serving e-Government IT systems and services

After two years of implementation of e-Government in the spirit of Resolution No. 36a / NQ-CP dated October 14, 2015 of the Government, the central and local agencies have actively applied information technology in terms of public service delivery and management; the expansion of interconnections has created remarkable improvements, especially the 2016 online public service index, which has grown eight-fold in the United Nations. The further deployment of e-Government implies more urgency in the implementation of options to ensure information security in accordance with Decree 85/2016 / ND-CP of the Government, Decision 05/2017 / QD -TTg, Decision 1622 / QD-TTg of the Prime Minister, and guiding circulars of the Ministry of Information and Communications. In particular, the implementation of Circular No. 31/2017 / TT-BTTTT on supervision of information security with specific requirements on monitoring and ensuring information security are measures to prevent and effectively prevent threats to the network. Through VNCERT’s security information monitoring, it has been revealed that attacks on Vietnam’s information system may occur just minutes after the zeroday vulnerability is reported worldwide, with the scanning attacks taking place continuously 24/7 in many forms, even with professional jamming strategies to avoid detection by the surveillance team. From the beginning of the year to June 25, 2018, VNCERT recorded 5,177 network attacks, of which 857 malicious code, 3,200 defect changes, and Phishing 11.22. There are also many incidents related to the website of state agencies using domain name .gov.vn. In fact, monitoring and ensuring information security for e-Government has been actively implemented in agencies with high IT application rating but resource constraints, challenges in technology and the sophistication of the hacking tactics of hackers have always put forth the need to continue making further efforts in monitoring and ensuring compliance with the requirements of Decree 85 / Decree No. 05/2017 / QD-TTg of the Prime Minister and Circular No. 31/2017 / TT-BTTTT of the Ministry of Information and Communications. The presentation will summarize the situation of Internet and communication network in the world and in Vietnam, especially the risks and problems of e-government system, based on the analysis of requirements and tasks set for the units, organized according to the legal documents of the Government, the Prime Minister and the Ministry of Information and Communications, which provides solutions and directions that agencies and organizations must implement to supervise and ensure information safety for e-Government.