China: Adopted Measures for the Administration of Cybersecurity in the Electric Power Industry

On 16 November 2022, China's National Energy Administration adopted revised Measures for the Administration of Cybersecurity in the Electric Power Industry, substituting the 2014 Measures. Electric power enterprises are given several responsibilities and obligations related to network security, including appointing a chief network security officer, identifying security personnel, adequately protecting their own networks, selecting secure and trustworthy network products and services, conducting third-party security tests, establishing and improving emergency response plans, and reporting and properly handling network security incidents.