Accounting Training

Blog

Blog Archive


2014

Information Technology Updates – Nov-2014

National Cyber Security Policy, 2013

  • National Cyber Security Policy is a proposed law by Department of Electronic and Information Technology (DeitY), Ministry of Communication and Information Technology, Government of India. Which is due to be passed by parliament, aimed at protecting the public and private infrastructure from cyber-attacks.
  • The policy also intends to safeguard information, such as personal information (of web users), financial and banking information and sovereign data.
  • This was particularly relevant in the wake of US National Security Agency (NSA) leaks that suggested the US government agencies are spying on India users, who have no legal or technical safeguards against it.

Reason for Cyber Security

  • India had no Cyber security policy before 2013. In 2013, The Hindu newspaper, citing documents leaked by NSA Whistleblower Edward Snowden, has alleged that much of NSA surveillance was focused on India’s domestic politics and its strategic and commercial interests. This lead to anger among people. Under pressure, Government unveiled a National Cyber Security Policy 2013 on 2 July 2013.

Extract from Analysis of National Cyber Security Policy by Data Security Council of India (DSCI) (Source: deity.gov.in)

  1. Rationalization of government efforts on cyber security through better coordination between different government agencies.
  2. Change in the ICT procurement processes of orgs esp. critical sectors and e-gov projects to focus on security of products; driving the suppliers to develop security in products; also increase in acceptability of tested products.
  3. Enhanced collaboration between government and industry on cyber security matters.
  4. Enhanced collaboration between organizations esp. within critical sectors on information sharing on cyber threats, sharing of best practices, etc.
  5. Sensitization of organizations towards need to enhance maturity of security practices and elevation of security function within organizations esp. in critical sectors and e-governance.
  6. Increase in demand for security professionals including implementers, managers, auditors, trainers; Creation of new jobs.
  7. Increased investment in security giving boost to cyber security products and services market in India; providing significant opportunities to security product and services companies and auditing firms.
  8. Impetus to the domestic security industry esp. the startups offering niche and innovative security products.
  9. Better coordinated R&D through collaboration of government, industry and academia.
  10. Sensitization of citizens, consumers and employees on cyber security threats and basic and best practices.
  11. Sensitization towards protection of personal information against cyber threats and in pursuance of security programs.
Financial Management