Hactl COSAC-Plus secures ISO 27001 for Hong Kong cargo systems
The recognition places information security alongside physical handling as a core element of terminal operations.;
Hactl Executive Director–Information Services John Lee (left) received the ISO/IEC 27001:2022 certification from SGS Hong Kong Limited Deputy Director, Products & Services Development Chris Yau (right).
Hong Kong Air Cargo Terminals Limited has become the first cargo terminal operator in Hong Kong to receive ISO IEC 27001 2022 certification for its cargo management system COSAC Plus, covering its IT infrastructure, operations, system development processes and cybersecurity controls.
The certification applies to the digital backbone that manages cargo flows at the terminal, a system used to coordinate acceptance, build-up, tracking and handover across multiple stakeholders in the air cargo chain. The recognition places information security alongside physical handling as a core element of terminal operations.
ISO IEC 27001 is an international standard for information security management systems and sets requirements for protecting the confidentiality, integrity and availability of data. For cargo terminals, this extends to shipment data, customer records, operational messaging and system availability that supports time-critical logistics processes.
Hactl began work toward the certification in 2024, requiring coordination across departments and changes to project priorities to align processes, controls and system development with the standard. The scope included not only the COSAC Plus platform but also how systems are operated, maintained and secured.
From a logistics perspective, the certification is positioned as a way to support customers that rely on secure and continuous digital interfaces for cargo planning, regulatory compliance and data exchange. It also aligns terminal operations with the compliance obligations of airlines, forwarders and other supply chain partners.
“Cyber threats are increasingly sophisticated and ever-present for modern organisations,” says John Lee, Hactl Executive Director of Information Services. “Achieving ISO IEC 27001 reinforces our readiness, resilience, and capability to safeguard customer information and maintain uninterrupted operations, even under challenging conditions.”
Maintaining the certification will require ongoing audits, monitoring of controls, staff training and alignment of information security policies with evolving practises. Hactl said it will continue to strengthen cybersecurity measures as part of its approach to delivering secure cargo operations in Hong Kong.