Supreme Court: Police May Freeze Bank Accounts under S.102 CrPC in Prevention of Corruption Cases  ||  SC: Arbitrator’s Mandate Ends on Time Expiry; Substituted Arbitrator Must Continue After Extension  ||  SC: Woman May Move Her Department’s ICC For Harassment by Employee of Another Workplace  ||  SC: Women’s Representation Requirement Applies to All Bar Associations in Gujarat  ||  SC: Contempt Power isn’t Judges’ Personal Shield nor a Tool to Silence Legitimate Criticism  ||  SC: Statutory Corporation Can Deduct under S.36(1)(viii) Only for Income from Long-Term Finance  ||  NCLT Kolkata: Costs for Compromise or Arrangement Scheme not Part of Liquidation Expenses  ||  NCLT Ahmedabad: Complaints Against Auditors or Company Secretaries Not Grounds for Company Probe  ||  SC: NCLT Can Forfeit Entire Deposit if Purchaser Defaults on Payment for Liquidation Assets  ||  Meghalaya HC: Non-Signatory or Non-Existent LLP Cannot Claim Arbitration via Group of Companies    

CERT-In issues directions relating to information security practices, procedure, prevention, response and reporting of cyber incidents - (28 Apr 2022)

Cyber Laws

In order to coordinate response activities as well as emergency measures with respect to cyber security incidents, CERT-In calls for information from service providers, intermediaries, data centres and body corporate. The Indian Computer Emergency Response Team (CERT-In) serves as the national agency for performing various functions in the area of cyber security in the country as per provisions of Section 70B of the Information Technology Act, 2000. CERT-In continuously analyses cyber threats and handles cyber incidents tracked and reported to it. CERT-In regularly issues advisories to organisations and users to enable them to protect their data/information and ICT infrastructure.

During the course of handling cyber incidents and interactions with the constituency, CERT-In has identified certain gaps causing hindrance in incident analysis. To address the identified gaps and issues so as to facilitate incident response measures, CERT-In has issued directions relating to information security practices, procedure, prevention, response and reporting of cyber incidents under the provisions of sub-section (6) of section 70B of the Information Technology Act, 2000. These directions will become effective after 60 days.

The directions cover aspects relating to synchronization of ICT system clocks; mandatory reporting of cyber incidents to CERT-In; maintenance of logs of ICT systems; subscriber/customer registrations details by Data centers, Virtual Private Server (VPS) providers, VPN Service providers, Cloud service providers; KYC norms and practices by virtual asset service providers, virtual asset exchange providers and custodian wallet providers. These directions shall enhance overall cyber security posture and ensure safe & trusted Internet in the country.

Tags : CERT-IN   DIRECTIONS   ISSUANCE  

Share :        

Disclaimer | Copyright 2025 - All Rights Reserved