From the beginning of July 2026, the Law on Network Security officially takes effect. This Law stipulates network security, network security protection; rights, obligations, and responsibilities of relevant agencies, organizations, and individuals.
Notably, this Law clearly stipulates that the managing agency of important information systems on national security has the following responsibilities:
Determine the level of network security of information systems and important information systems on national security; assess and manage network security risks of information systems.
Urge, supervise, and inspect the work of protecting network security of information systems; organize the implementation of measures to protect network security of information systems...
In addition, when establishing, expanding or upgrading important national security information systems, network security checks must be carried out before going into operation and exploitation.
Periodically every year, self-inspect network security, assess network security conditions of important information systems on national security and notify the inspection results in writing before October every year to the competent specialized network security protection force.
Preside over and coordinate with competent specialized forces to protect network security in regularly implementing network security surveillance; building a mechanism for self-alerte and receiving warnings about network security threats; proposing emergency response and overcoming plans.
At the same time, develop response plans to overcome network security incidents; deploy response plans to overcome when network security incidents occur and promptly report to the competent specialized network security protection force.
Coordinate with specialized forces to protect network security in conducting surprise network security inspections.
The Ministry of Public Security is responsible for appraising network security for important information systems on national security.
Evaluate and certify eligibility for network security for important information systems on national security; conduct surprise network security checks for important information systems on national security;
Implement network security monitoring; warn and coordinate with information system managers to overcome and handle network security threats and network security incidents for important information systems of national security.
Preside over and coordinate activities to respond to and overcome network security incidents that occur to important information systems on national security; notify information system managers when detecting network attacks or network security incidents.
Preside over and coordinate with the Government Cipher Committee in implementing measures to protect important information systems on national security using solutions and cryptographic products provided by the Government Cipher Committee to protect state secrets.
And the Ministry of National Defense presides over the network security appraisal, network security conditions assessment, unexpected network security inspection, network security monitoring and coordinating activities to respond to and overcome network security incidents for military information systems managed by the Ministry of National Defense.
The Government Cipher Committee presides over the organization and implementation of a solution to use cipher cryptography to protect state secret information in important information systems on national security...
