Policies

Cybersecurity Act 2019

Source: International Energy Agency

Last updated: 24 April 2025

Country Thailand
Year

2019
Status

In force
Jurisdiction

National
A problem with this policy?
Tell us and we will take a look.
Contact us

Section 49 states that energy is a critical information infrastructure. Observing compliance with cybersecurity standards and conducting annual risk assessments are key requirements, with risk assessment results to be submitted to the Office of the National Cybersecurity Committee (NCC). Furthermore, organizations must report cyber threats to the Office of the NCC and the relevant Supervising Organization and conduct appropriate investigations.

Want to know more about this policy ? Learn more

Topics

Economy-wide

Policy types

Cybersecurity requirements for energy operators