Author Archives: P4LO

National Cyber Security Policy (NSCP) 2013 Of India Declared But Much Still To Achieve

National Cyber Security Policy (NSCP) 2013 Of India Declared But Much Still To AchieveThe much awaited national cyber security policy of India has been finally declared by Indian government. It has incorporated many good policy decisions that can go a long way in improving the cyber security of India.

However, till it is made operational and is actually implemented, it would remain mere paper work. Thus, the real challenge is to make the National Cyber Security Policy 2013 operational at the ground level. Similarly, there are many more techno legal issues that a good and holistic cyber security policy must incorporate. Indian cyber security policy is still deficient on many counts. Nevertheless this is a good effort in the right direction.

Some of the areas covered by the policy include cyber security skills development, cyber crisis management plan, critical infrastructure protection, preferential treatment to domestic hardware software, security issues of IT equipments, engaging in public private partnerships to strengthen cyber security of India, etc.

The National Cyber Security Policy 2013 also aims at protecting information and building capabilities to prevent cyber attacks. It has also rightly touched the aspects of global cooperation and coordination in the cyber security field.

The objectives of the NCSP 2013 include creation of a cyber ecosystem in the country, encouraging open standards, strengthening of regulatory framework, securing e-governance services, critical infrastructure protection, promotion of research and development in cyber security, spreading cyber security awareness, providing fiscal benefits to businesses for adoption of standard security practices and processes, developing effective public private partnerships and collaborative engagements through technical and operational cooperation.

The policy calls for developing a dynamic legal framework and periodically reviewing it to address the cyber security challenges arising out of technological developments in cyber space.

The policy plans to operate a 24X7 national level computer emergency response team to function as a nodal agency for coordination of all efforts for cyber security emergency response and crisis management.

We would cover various aspects of NCSP 2103 in great detail in our subsequent posts.

Cyber Security Policy Of India To Be Released Next Week

Cyber Security Policy Of India To Be Released Next WeekThe national cyber security policy of India is long overdue. Although the cyber security policy of India has been approved by the Cabinet Committee on Security (CCS) yet its actual implementation is yet to be seen.

India has been facing sophisticated cyber attacks and an effective cyber security policy with robust cyber security law is urgently needed. Presently India lacks on both the counts.

But that may not be the situation any more. Indian government is about to announce the National Cyber Security Policy this week. The policy would ensure intervallic review of legislations to meet the challenges from technology upgradation, a think-tank for cyber security policy inputs, greater private participation and international co-operation in the area of cyber security.

The policy also intends to develop bilateral and multi-lateral ties to enhance global cooperation among security agencies, law enforcement agencies and judicial system. Under the policy a National Critical Information Infrastructure Protection Centre will work around-the-clock to protect critical infrastructure, and designate a national nodal agency to coordinate all matters related to cyber security.

The policy aims at creating a capable cyber security work force of five lakh professionals and build cyber security training infrastructure across the country through public-private participation.

The policy is also encouraging both private and public organisations to designate a member of senior management as chief information security officer responsible for cyber security efforts and initiatives. The Reserve Bank of India (RBI) has already made mandatory to appoint a chief information officer (CIO) by all banks of India.

Indian PMO Sanctioned Rs. 1,000 Crore To Strengthen Indian Cyber Security

India's PM Singh attends an EU-India Summit in BrusselsCyber security in India is now taken seriously by Indian government. Indian government is improving on this front step by step. Firstly, it announced the cyber security policy of India. Then it stressed upon developing indigenous capability to make hardware and software in India. The intentions to establish a cyber command for armed forces of India are also pretty clear.

Now it has been reported that the Prime Minister’s Office (PMO) of India has sanctioned a plan to spend 1,000 crore over the next four years to strengthen the cyber security capabilities of India. This would include both offensive and defensive cyber security capabilities of India.

India has already announced initiatives like national critical information infrastructure protection centre (NCIPC), national cyber coordination centre (NCCC), national intelligence grid (Natgrid), etc. These initiatives are essential to ensure critical infrastructure protection in India.

As per the latest plan, new agencies and coordination cells would be established to improve response to cyber threats. Presently, this is waiting the cabinet committee approval. The plan provides that the National Security Council Secretariat will coordinate among agencies and implement a policy outlined by the Intelligence Bureau.

The Department of Electronics and Information Technology (DEITY) has proposed to set up of a National Cyber Coordination Centre involving an expenditure of Rs 500 crore over five years.