Hong Kong Fortifies Cybersecurity Training in the AI Era

Hong Kong’s latest Cybersecurity Outlook underscores a widening talent gap as the city’s digital transformation accelerates. The survey of 622 organisations shows that almost a third of firms operate without dedicated security personnel, with small and medium‑size enterprises lagging far behind large corporations. This shortage amplifies exposure to ransomware, phishing, and AI‑enabled attacks, prompting policymakers to prioritize practical skill development alongside traditional governance measures.

In response, the Digital Policy Office, HKPC and HKCERT have rolled out scenario‑based training that pits participants as both attackers and defenders within simulated corporate networks. These exercises replicate the pressures of modern Security Operations Centres, integrating zero‑trust architectures, endpoint detection and response platforms, and AI‑driven analytics. By leveraging generative AI for rapid vulnerability assessment while maintaining human oversight, the program aims to sharpen analytical agility and reduce response times, bridging the gap between theory and operational readiness.

Beyond education, Hong Kong is tightening policy frameworks through the “Building a Secure Cyberspace 2026” campaign and forthcoming AI security guidelines. The combined focus on incident‑response services, advisory support, and cross‑border collaboration seeks to elevate the city’s cybersecurity standards and attract regional talent. As enterprises increasingly rely on complex supply‑chain ecosystems, Hong Kong’s ambition to become a regional cyber hub could reshape the Asia‑Pacific security landscape, offering a model for integrating governance, technology and workforce development.