Supreme Court: Belated Jurisdictional Challenge Impermissible After Participation in Arbitration  ||  Supreme Court: Failure to Prove Specific Overt Acts of Each Unlawful Assembly Member Not Fatal  ||  Supreme Court: Parental Salary Alone Cannot Determine OBC Creamy Layer Status  ||  SC: Direct Recruits’ Seniority Begins From Initial Appointment, Not Completion of Probation  ||  Supreme Court: Police Recruitment Can be Denied Only if Acquittal in Heinous Crime Was on Doubt  ||  J&K & Ladakh High Court: Section 479 BNSS Does Not Grant Automatic Bail After Detention Period  ||  Bombay High Court: Trial Vitiated if Forensic Experts Whose Reports are Relied Upon are Not Examined  ||  J&K & Ladakh HC: Mutation Attested in Violation of Agrarian Reforms Act Can be Reviewed in Revision  ||  Gujarat High Court: Power Company Cannot Allege Deceased’s Negligence in Hanging Live Wire Death  ||  Delhi High Court Denies Lifting Stay on Kent RO’s Sale of Fans under the KENT Trademark    

CERT-In issues directions relating to information security practices, procedure, prevention, response and reporting of cyber incidents - (28 Apr 2022)

Cyber Laws

In order to coordinate response activities as well as emergency measures with respect to cyber security incidents, CERT-In calls for information from service providers, intermediaries, data centres and body corporate. The Indian Computer Emergency Response Team (CERT-In) serves as the national agency for performing various functions in the area of cyber security in the country as per provisions of Section 70B of the Information Technology Act, 2000. CERT-In continuously analyses cyber threats and handles cyber incidents tracked and reported to it. CERT-In regularly issues advisories to organisations and users to enable them to protect their data/information and ICT infrastructure.

During the course of handling cyber incidents and interactions with the constituency, CERT-In has identified certain gaps causing hindrance in incident analysis. To address the identified gaps and issues so as to facilitate incident response measures, CERT-In has issued directions relating to information security practices, procedure, prevention, response and reporting of cyber incidents under the provisions of sub-section (6) of section 70B of the Information Technology Act, 2000. These directions will become effective after 60 days.

The directions cover aspects relating to synchronization of ICT system clocks; mandatory reporting of cyber incidents to CERT-In; maintenance of logs of ICT systems; subscriber/customer registrations details by Data centers, Virtual Private Server (VPS) providers, VPN Service providers, Cloud service providers; KYC norms and practices by virtual asset service providers, virtual asset exchange providers and custodian wallet providers. These directions shall enhance overall cyber security posture and ensure safe & trusted Internet in the country.

Tags : CERT-IN   DIRECTIONS   ISSUANCE  

Share :        

Disclaimer | Copyright 2026 - All Rights Reserved