Abstract image of a woman sitting on books and studying on a laptop

INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)

Download as PPTX, PDF
Santosh Khadsare , profile picture
Santosh Khadsare

The document outlines India's national cyber security policy and strategies. It aims to build a secure and resilient cyberspace for citizens, businesses, and government. The key objectives are to create a secure cyber ecosystem, strengthen regulatory frameworks, enhance mechanisms for information gathering and response, protect critical information infrastructure, develop indigenous security technologies, and create a cybersecurity workforce. The strategies to achieve these objectives include designating agencies to coordinate cybersecurity efforts, encouraging adoption of best practices, developing testing and certification processes, and fostering public-private partnerships and cooperation.

Education
1 of 27
Downloaded 216 times
1
2
Most read
3
4
5
6
7
8
9
10
11
12
13
Most read
14
15
16
17
18
19
20
21
22
23
24
25
26
27
Most read
NATIONAL CYBER SECURITY POLICY - 2013 SANTOSH KAHDASRE
PREAMBLE SANTOSH KHADSARE 2
Complex environment of integrations between people, software and services Common pool used by citizens, businesses , critical information infrastructure ,military and groups Vulnerable to a wide range of incidents, whether intentional or accidental, manmade or natural, and the info can be exploited by both nation states and non state actors SANTOSH KHADSARE 3 CYBERSPACE IS…..
Caters to the whole spectrum of ICT users and providers and is an evolving process IT SERVES AS AN UMBRELLA FRAMEWORK FOR DEFINING AND GUIDING THE ACTIONS RELATED TO SECURITY OF CYBER SPACE It also enables the individual sectors and org in designing appropriate cyber security polices to suit their needs SANTOSH KHADSARE 4 CYBER SECURITY POLICY
TO BUILD A SECURE AND RESILIENT CYBERSPACE FOR CITIZENS, BUSINESSES AND GOVERNMENT SANTOSH KHADSARE 5 VISION
SANTOSH KHADSARE 6 MISSION
SANTOSH KHADSARE 7 OBJECTIVES Create a secure cyber ecosystem Create an assurance framework Strengthen the regulatory framework Enhance and create national and sectorial level 24x7 mechanisms for info gathering Enhance protection and resilience of CII by operating 24x7 NCIIPC Develop indigenous security technologies
SANTOSH KHADSARE 8 OBJECTIVES Est infrastructure for testing & validation of security of such products Create workforce of 500,000 professionals in next five years Fiscal benefits to businesses for adoption of std security practices and processes Enable effective prevention , investigation and prosecution of cyber crime Create culture of cyber security Develop public pvt partnerships and enhance global cooperation
Designate a national nodal agency to coordinate matters(cyber security) with clearly defined roles and responsibilities designate CISO in every org who will be responsible for cyber security efforts and initiatives Org to devp info security policies and implement them as per international best practices Org to earmark a specific budget for cyber security SANTOSH KHADSARE 9 STRATEGIES : CREATING A SECURE CYBER ECO SYSTEM
Provide fiscal schemes and initiatives to encourage entities to install and upgrade info infrastructure fro cyber security Prevent occurrence and recurrence of cyber incidents (proactive actions) Est mechanism for sharing info Procurement of trustworthy indigenously manufactured ICT products SANTOSH KHADSARE 10 STRATEGIES : CREATING A SECURE CYBER ECO SYSTEM
Promote adoption of global best practices in info security and compliance. Create infrastructure for conformity assessment and certification of compliance to cyber security best practices, std and guidelines (e.g ISO 27001 ISMS certification). Enable implementation of global security best practices for risk management. Identify and classify info infrastructure facilities and assets. SANTOSH KHADSARE 11 STRATEGIES : CREATING A ASSURANCE FRAMEWORK
Encourage secure appln/software devp processes. Create conformity assessment framework for periodic verification of compliance to best practices, std and guidelines on cyber security. Encourage all entities tom periodically test and evaluate the adequacy and effectiveness of tech and op security measures implemented in IT sys and networks . SANTOSH KHADSARE 12 STRATEGIES : CREATING A ASSURANCE FRAMEWORK
Encourage use of open standards to facilitate interoperability and data exchange among different products and services. Promote a consortium of Govt and private sector to enhance availability of tested and certified IT products on open standards. SANTOSH KHADSARE 13 STRATEGIES : ENCOURAGING OPEN STANDARDS
Devp dynamic and legal framework and its periodic review to address Cyber security challenges. To mandate periodic audit and evaluation. To enable, educate and facilitate awareness of the regulatory framework. SANTOSH KHADSARE 14 STRATEGIES : STRENGTHENING THE REGULATORY FRAMEWORK
To create National lvl sys , processes, structures and mechanisms to generate situational scenario of existing and potential threats and enable timely info sharing for proactive, preventive and protective actions. To operate 24x7 CERT-in to function as a Nodal Agency for coordination of all efforts for cyber security emergency response and crisis mgt (Umbrella org). SANTOSH KHADSARE 15 STRATEGIES : CREATING MECHANISMS FOR EARLY WARNING , VULNERABILITY MGT & RESPONSE
Operationalise 24x7 sectorial CERTs. Implement Crisis Mgt plan for dealing with incidents impacting critical national processes or endangering public safety and security of the nation. To conduct and facilitate regular cyber security drills and exercises at National, sectorial and entity levels. SANTOSH KHADSARE 16 STRATEGIES : CREATING MECHANISMS FOR EARLY WARNING , VULNERABILITY MGT & RESPONSE
To mandate implementation of global security best practices, business continuity mgt and cyber crisis mgt plan for all e- Governance initiatives . To encourage wider usage of PKI within Govt. for trusted communication and transactions. To engage info security professionals / org to assist . SANTOSH KHADSARE 17 STRATEGIES : SECURING E- GOVERNANCE SERVICES
To devp plan for protection of CII. To operate 24x7 National Critical Information Infrastructure Protection Centre(NCIIPC) to function as Nodal agency for CII protection. To facilitate identification, prioritisation, assessment, remediation and protection of CII and key recourses. To encourage and mandate as appropriate, the use of validated and certified IT products. SANTOSH KHADSARE 18 STRATEGIES : PROTECTION AND RESILIENCE OF CRITICAL INFO INFRASTRUCTURE
To mandate security audit of CII on periodic basis. To mandate certification of all security roles right from CISO /CSO to those involved in operation of CII. To mandate secure appl /software devp process. SANTOSH KHADSARE 19 STRATEGIES : PROTECTION AND RESILIENCE OF CRITICAL INFO INFRASTRUCTURE
To undertake R&D programs aimed at short term, medium term and long term goals. To encourage R&D to produce cost effective, tailor-made and indigenous security solutions . To facilitate transition, diffusion. And commercialisation of outputs of R&D into commercial products and services for use in public and private sectors. SANTOSH KHADSARE 20 STRATEGIES : PROMOTION OF R&D IN CYBER SECURITY
To set up Centre of Excellence in areas of strategic importance for the point of security of cyber space . To collaborate in joint R&D projects with industry and academia in frontline technologies and solution oriented research. SANTOSH KHADSARE 21 STRATEGIES : PROMOTION OF R&D IN CYBER SECURITY
To create and maintain testing infrastructure and facilities of IT security product evaluation and compliance verification. To build trust relationships with product / system vendors and service providers for improving end-to-end supply chain security visibility. To create awareness of the threats, vulnerabilities and consequences of breach of security related to IT procurement. SANTOSH KHADSARE 22 STRATEGIES : REDUCIN SUPPLY CHAIN RISKS
To foster education and trg programs both in formal and informal sectors to support the nation’s cyber security needs and build capacity. To est cyber security trg infrastructure across the country by way of public private partnership arrangements. To est cyber security concept labs for awareness and skill devp in key areas. To est institutional mechanisms for capacity building for Law Enforcement Agencies. SANTOSH KHADSARE 23 STRATEGIES : HRD
To promote and launch a comprehensive national awareness program on security of cyber space. To sustain security literacy awareness and publicity campaign through electronic media. To conduct, support and enable cyber security workshops / seminars and certifications. SANTOSH KHADSARE 24 STRATEGIES : CREATING CYBER SECURITY AWARENESS
To facilitate collaboration and cooperation among stakeholder entities. To create models of collaborations and engagement with all relevant stakeholders. To create a think tank for cyber security inputs, discussion and deliberations. SANTOSH KHADSARE 25 STRATEGIES : DEVP EFFECTIVE PUBLIC PVT PARTNERSHIPS
INFO SHARING AND COOPERATION (among security agencies, CERTs, defence agencies, Law enforcement agencies and judicail systems). PRIORTIZED APPROACH FOR IMPLEMENTATION. SANTOSH KHADSARE 26 OTHER STRATEGIES
THANK YOU SANTOSH KHADSARE 27

More Related Content

PPTX
Cryptography
Shivanand Arur
 
PPTX
Law and Ethics in Information Security.pptx
EdFeranil
 
PPTX
Presentation on Software Piracy
Pallavi Agarwal
 
PDF
National Cyber Security Policy 2013 (NCSP)
Gopal Choudhary
 
PPTX
Distributed file system
Anamika Singh
 
PPTX
Operating System Unit 1
SanthiNivas
 
PPTX
01 - Introduction to Distributed Systems
Dilum Bandara
 
PPTX
Federated Cloud Computing
David Wallom
 
Cryptography
Shivanand Arur
 
Law and Ethics in Information Security.pptx
EdFeranil
 
Presentation on Software Piracy
Pallavi Agarwal
 
National Cyber Security Policy 2013 (NCSP)
Gopal Choudhary
 
Distributed file system
Anamika Singh
 
Operating System Unit 1
SanthiNivas
 
01 - Introduction to Distributed Systems
Dilum Bandara
 
Federated Cloud Computing
David Wallom
 

What's hot (20)

PPS
An Introduction to Internet
Chinmay Raul
 
PPT
Cyber security standards
Vaughan Olufemi ACIB, AICEN, ANIM
 
PPTX
Introduction to cyber security
RaviPrashant5
 
PPTX
Ethics in-information-security
Milinda Wickramasinghe
 
PPTX
Fault tolerance in distributed systems
sumitjain2013
 
PDF
Some E-commerce Applications
Anuj Gupta
 
PPT
computer forensics
Akhil Kumar
 
PPT
Understanding and Conceptualizing interaction - Mary Margarat
Mary Margarat
 
PPTX
WWW or World Wide Web
Saransh Arora
 
PPT
Email security
Indrajit Sreemany
 
PPTX
Synchronization in distributed computing
SVijaylakshmi
 
PPTX
Trends in distributed systems
Jayanthi Radhakrishnan
 
PPTX
Web 2.0
Ola Sayed Ahmed
 
PPTX
What is Cryptography and Types of attacks in it
lavakumar Thatisetti
 
PPTX
Presentation on web browser
Swasat Dutta
 
PPTX
Reader/writer problem
RinkuMonani
 
PPTX
history of internet and usage of internet in education and communication
Kowshick Ahmed
 
PDF
Unit II - 3 - Operating System - Process Synchronization
cscarcas
 
PDF
Phishing Attacks: A Challenge Ahead
eLearning Papers
 
PPTX
Telephone call-simulation
Prakash Poudel
 
An Introduction to Internet
Chinmay Raul
 
Cyber security standards
Vaughan Olufemi ACIB, AICEN, ANIM
 
Introduction to cyber security
RaviPrashant5
 
Ethics in-information-security
Milinda Wickramasinghe
 
Fault tolerance in distributed systems
sumitjain2013
 
Some E-commerce Applications
Anuj Gupta
 
computer forensics
Akhil Kumar
 
Understanding and Conceptualizing interaction - Mary Margarat
Mary Margarat
 
WWW or World Wide Web
Saransh Arora
 
Email security
Indrajit Sreemany
 
Synchronization in distributed computing
SVijaylakshmi
 
Trends in distributed systems
Jayanthi Radhakrishnan
 
Web 2.0
Ola Sayed Ahmed
 
What is Cryptography and Types of attacks in it
lavakumar Thatisetti
 
Presentation on web browser
Swasat Dutta
 
Reader/writer problem
RinkuMonani
 
history of internet and usage of internet in education and communication
Kowshick Ahmed
 
Unit II - 3 - Operating System - Process Synchronization
cscarcas
 
Phishing Attacks: A Challenge Ahead
eLearning Papers
 
Telephone call-simulation
Prakash Poudel
 
Ad

Similar to INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013) (20)

PPTX
National Cyber Security Policy-2013
Vidushi Singh
 
PPTX
Unit-4 National Cyber Security Policy ,2013.pptx
himanshukumarviplava2
 
PPTX
National cyber security policy final
Indian Air Force
 
PDF
Internet safety and security strategies for building an internet safety wall
Commonwealth Telecommunications Organisation
 
PDF
Cyber Security Strategies and Approaches
vngundi
 
PDF
National Cyber Security Strategy 2020 DSCI submission.pdf
sri_ias
 
PDF
(DAILY NEWS ANALYSIS)
IAS Next
 
PPTX
Nist 800 53 deep dive 20210813
Kinetic Potential
 
PDF
Cyber Readiness Index 2.0
Francesca Spidalieri
 
PPTX
Cyber Security - Awareness Presentation - High Level
bbothma718
 
PPTX
Draft_ppt_dmss[1][2] (1) FINAL123455667.pptx
mazumderdevangshu
 
PDF
Nist cybersecurity framework isc2 quantico
Tuan Phan
 
PDF
National Cybersecurity - Roadmap and Action Plan
Dr David Probert
 
PPTX
Cybersecurity-Real World Approach FINAL 2-24-16
James Rutt
 
PPTX
Achieving Caribbean Cybersecuirty
Shiva Bissessar
 
PPT
Infrastructure Security by Sivamurthy Hiremath
ClubHack
 
PPTX
MCGlobalTech Service Presentation
William McBorrough
 
PDF
Introduction to NIST Cybersecurity Framework
Tuan Phan
 
PPTX
CSO Magazine Confab 2013 Atlanta - Cyber Security
Phil Agcaoili
 
PDF
Overview of National Cybersecurity Strategy 2023.pdf
Niloufer Tamboly
 
National Cyber Security Policy-2013
Vidushi Singh
 
Unit-4 National Cyber Security Policy ,2013.pptx
himanshukumarviplava2
 
National cyber security policy final
Indian Air Force
 
Internet safety and security strategies for building an internet safety wall
Commonwealth Telecommunications Organisation
 
Cyber Security Strategies and Approaches
vngundi
 
National Cyber Security Strategy 2020 DSCI submission.pdf
sri_ias
 
(DAILY NEWS ANALYSIS)
IAS Next
 
Nist 800 53 deep dive 20210813
Kinetic Potential
 
Cyber Readiness Index 2.0
Francesca Spidalieri
 
Cyber Security - Awareness Presentation - High Level
bbothma718
 
Draft_ppt_dmss[1][2] (1) FINAL123455667.pptx
mazumderdevangshu
 
Nist cybersecurity framework isc2 quantico
Tuan Phan
 
National Cybersecurity - Roadmap and Action Plan
Dr David Probert
 
Cybersecurity-Real World Approach FINAL 2-24-16
James Rutt
 
Achieving Caribbean Cybersecuirty
Shiva Bissessar
 
Infrastructure Security by Sivamurthy Hiremath
ClubHack
 
MCGlobalTech Service Presentation
William McBorrough
 
Introduction to NIST Cybersecurity Framework
Tuan Phan
 
CSO Magazine Confab 2013 Atlanta - Cyber Security
Phil Agcaoili
 
Overview of National Cybersecurity Strategy 2023.pdf
Niloufer Tamboly
 
Ad

More from Santosh Khadsare (20)

PPTX
Cyber fraud (netflix)
Santosh Khadsare
 
PPT
INTERNET SECUIRTY TIPS
Santosh Khadsare
 
PPT
Linux forensics
Santosh Khadsare
 
PPT
Network forensics1
Santosh Khadsare
 
PPT
Windowsforensics
Santosh Khadsare
 
PPT
Lec 1 apln security(4pd)
Santosh Khadsare
 
PPT
Smart card
Santosh Khadsare
 
PPT
Guassvirus
Santosh Khadsare
 
PPT
IDS and IPS
Santosh Khadsare
 
PPT
Webmail
Santosh Khadsare
 
PPT
Linux Forensics
Santosh Khadsare
 
PPT
Web server
Santosh Khadsare
 
PPT
Samba server
Santosh Khadsare
 
PPT
Firewall(linux)
Santosh Khadsare
 
PPT
Securitytips
Santosh Khadsare
 
PPT
Linux basics
Santosh Khadsare
 
PPT
Linuxfilesys
Santosh Khadsare
 
PPT
Linuxconcepts
Santosh Khadsare
 
PPT
Introtolinux
Santosh Khadsare
 
DOC
New internet
Santosh Khadsare
 
Cyber fraud (netflix)
Santosh Khadsare
 
INTERNET SECUIRTY TIPS
Santosh Khadsare
 
Linux forensics
Santosh Khadsare
 
Network forensics1
Santosh Khadsare
 
Windowsforensics
Santosh Khadsare
 
Lec 1 apln security(4pd)
Santosh Khadsare
 
Smart card
Santosh Khadsare
 
Guassvirus
Santosh Khadsare
 
IDS and IPS
Santosh Khadsare
 
Webmail
Santosh Khadsare
 
Linux Forensics
Santosh Khadsare
 
Web server
Santosh Khadsare
 
Samba server
Santosh Khadsare
 
Firewall(linux)
Santosh Khadsare
 
Securitytips
Santosh Khadsare
 
Linux basics
Santosh Khadsare
 
Linuxfilesys
Santosh Khadsare
 
Linuxconcepts
Santosh Khadsare
 
Introtolinux
Santosh Khadsare
 
New internet
Santosh Khadsare
 

Recently uploaded (20)

PDF
anganwadi services for the b.sc nursing and GNM
shaila55
 
PDF
WHAT NURSES SAY_ COMMUNICATION BEHAVIORS ASSOCIATED WITH THE COMP.pdf
shaheraharby
 
PPTX
Cite It Right: A Compact Illustration of APA 7th Edition.pptx
ZeeKeZahid
 
PPT
hemostasis and its significance, physiology
rakshasb
 
PDF
African Communication Research: A review
AgathaMashindano1
 
PDF
Diabetes Mellitus , types , clinical picture, investigation and managment
AreenAManasrah
 
PPTX
Key-Features-of-the-SHS-Program-v4-Slides (3) PPT2.pptx
abdurakibtingsonjali
 
PDF
Kalaari-SaaS-Founder-Playbook-2024-Edition-.pdf
savannetflix
 
PPTX
Approach to a child with acute kidney injury
SukantaMandal26
 
PPTX
ENGlishGrade8_Quarter2_WEEK1_LESSON1.pptx
ZaNiah1
 
PDF
LATAM’s Top EdTech Innovators Transforming Learning in 2025.pdf
educationexcellencem
 
PDF
Laparoscopic Imaging Systems at World Laparoscopy Hospital
mohitsuren827
 
PPTX
Thinking Routines and Learning Engagements.pptx
n646vnqyjz
 
PPTX
2025 High Blood Pressure Guideline Slide Set.pptx
Ramesh Kumar
 
PPTX
4. Diagnosis and treatment planning in RPD.pptx
rakshasb
 
PPTX
Diploma pharmaceutics notes..helps diploma students
zonuntluangimph
 
PPTX
Copy of ARAL Program Primer_071725(1).pptx
LovelyLocsinVillar
 
PPTX
Theoretical for class.pptxgshdhddhdhdhgd
MoybonKalif
 
PPTX
growth and developement.pptxweeeeerrgttyyy
[email protected]
 
PDF
POM_Unit1_Notes.pdf Introduction to Management #mba #bba #bcom #bballb #class...
priyasinghy107
 
anganwadi services for the b.sc nursing and GNM
shaila55
 
WHAT NURSES SAY_ COMMUNICATION BEHAVIORS ASSOCIATED WITH THE COMP.pdf
shaheraharby
 
Cite It Right: A Compact Illustration of APA 7th Edition.pptx
ZeeKeZahid
 
hemostasis and its significance, physiology
rakshasb
 
African Communication Research: A review
AgathaMashindano1
 
Diabetes Mellitus , types , clinical picture, investigation and managment
AreenAManasrah
 
Key-Features-of-the-SHS-Program-v4-Slides (3) PPT2.pptx
abdurakibtingsonjali
 
Kalaari-SaaS-Founder-Playbook-2024-Edition-.pdf
savannetflix
 
Approach to a child with acute kidney injury
SukantaMandal26
 
ENGlishGrade8_Quarter2_WEEK1_LESSON1.pptx
ZaNiah1
 
LATAM’s Top EdTech Innovators Transforming Learning in 2025.pdf
educationexcellencem
 
Laparoscopic Imaging Systems at World Laparoscopy Hospital
mohitsuren827
 
Thinking Routines and Learning Engagements.pptx
n646vnqyjz
 
2025 High Blood Pressure Guideline Slide Set.pptx
Ramesh Kumar
 
4. Diagnosis and treatment planning in RPD.pptx
rakshasb
 
Diploma pharmaceutics notes..helps diploma students
zonuntluangimph
 
Copy of ARAL Program Primer_071725(1).pptx
LovelyLocsinVillar
 
Theoretical for class.pptxgshdhddhdhdhgd
MoybonKalif
 
growth and developement.pptxweeeeerrgttyyy
[email protected]
 
POM_Unit1_Notes.pdf Introduction to Management #mba #bba #bcom #bballb #class...
priyasinghy107
 

INDIAN NATIONAL CYBER SECURITY POLICY (NCSP-2013)

  • 1. NATIONAL CYBER SECURITY POLICY - 2013 SANTOSH KAHDASRE
  • 3. Complex environment of integrations between people, software and services Common pool used by citizens, businesses , critical information infrastructure ,military and groups Vulnerable to a wide range of incidents, whether intentional or accidental, manmade or natural, and the info can be exploited by both nation states and non state actors SANTOSH KHADSARE 3 CYBERSPACE IS…..
  • 4. Caters to the whole spectrum of ICT users and providers and is an evolving process IT SERVES AS AN UMBRELLA FRAMEWORK FOR DEFINING AND GUIDING THE ACTIONS RELATED TO SECURITY OF CYBER SPACE It also enables the individual sectors and org in designing appropriate cyber security polices to suit their needs SANTOSH KHADSARE 4 CYBER SECURITY POLICY
  • 5. TO BUILD A SECURE AND RESILIENT CYBERSPACE FOR CITIZENS, BUSINESSES AND GOVERNMENT SANTOSH KHADSARE 5 VISION
  • 7. SANTOSH KHADSARE 7 OBJECTIVES Create a secure cyber ecosystem Create an assurance framework Strengthen the regulatory framework Enhance and create national and sectorial level 24x7 mechanisms for info gathering Enhance protection and resilience of CII by operating 24x7 NCIIPC Develop indigenous security technologies
  • 8. SANTOSH KHADSARE 8 OBJECTIVES Est infrastructure for testing & validation of security of such products Create workforce of 500,000 professionals in next five years Fiscal benefits to businesses for adoption of std security practices and processes Enable effective prevention , investigation and prosecution of cyber crime Create culture of cyber security Develop public pvt partnerships and enhance global cooperation
  • 9. Designate a national nodal agency to coordinate matters(cyber security) with clearly defined roles and responsibilities designate CISO in every org who will be responsible for cyber security efforts and initiatives Org to devp info security policies and implement them as per international best practices Org to earmark a specific budget for cyber security SANTOSH KHADSARE 9 STRATEGIES : CREATING A SECURE CYBER ECO SYSTEM
  • 10. Provide fiscal schemes and initiatives to encourage entities to install and upgrade info infrastructure fro cyber security Prevent occurrence and recurrence of cyber incidents (proactive actions) Est mechanism for sharing info Procurement of trustworthy indigenously manufactured ICT products SANTOSH KHADSARE 10 STRATEGIES : CREATING A SECURE CYBER ECO SYSTEM
  • 11. Promote adoption of global best practices in info security and compliance. Create infrastructure for conformity assessment and certification of compliance to cyber security best practices, std and guidelines (e.g ISO 27001 ISMS certification). Enable implementation of global security best practices for risk management. Identify and classify info infrastructure facilities and assets. SANTOSH KHADSARE 11 STRATEGIES : CREATING A ASSURANCE FRAMEWORK
  • 12. Encourage secure appln/software devp processes. Create conformity assessment framework for periodic verification of compliance to best practices, std and guidelines on cyber security. Encourage all entities tom periodically test and evaluate the adequacy and effectiveness of tech and op security measures implemented in IT sys and networks . SANTOSH KHADSARE 12 STRATEGIES : CREATING A ASSURANCE FRAMEWORK
  • 13. Encourage use of open standards to facilitate interoperability and data exchange among different products and services. Promote a consortium of Govt and private sector to enhance availability of tested and certified IT products on open standards. SANTOSH KHADSARE 13 STRATEGIES : ENCOURAGING OPEN STANDARDS
  • 14. Devp dynamic and legal framework and its periodic review to address Cyber security challenges. To mandate periodic audit and evaluation. To enable, educate and facilitate awareness of the regulatory framework. SANTOSH KHADSARE 14 STRATEGIES : STRENGTHENING THE REGULATORY FRAMEWORK
  • 15. To create National lvl sys , processes, structures and mechanisms to generate situational scenario of existing and potential threats and enable timely info sharing for proactive, preventive and protective actions. To operate 24x7 CERT-in to function as a Nodal Agency for coordination of all efforts for cyber security emergency response and crisis mgt (Umbrella org). SANTOSH KHADSARE 15 STRATEGIES : CREATING MECHANISMS FOR EARLY WARNING , VULNERABILITY MGT & RESPONSE
  • 16. Operationalise 24x7 sectorial CERTs. Implement Crisis Mgt plan for dealing with incidents impacting critical national processes or endangering public safety and security of the nation. To conduct and facilitate regular cyber security drills and exercises at National, sectorial and entity levels. SANTOSH KHADSARE 16 STRATEGIES : CREATING MECHANISMS FOR EARLY WARNING , VULNERABILITY MGT & RESPONSE
  • 17. To mandate implementation of global security best practices, business continuity mgt and cyber crisis mgt plan for all e- Governance initiatives . To encourage wider usage of PKI within Govt. for trusted communication and transactions. To engage info security professionals / org to assist . SANTOSH KHADSARE 17 STRATEGIES : SECURING E- GOVERNANCE SERVICES
  • 18. To devp plan for protection of CII. To operate 24x7 National Critical Information Infrastructure Protection Centre(NCIIPC) to function as Nodal agency for CII protection. To facilitate identification, prioritisation, assessment, remediation and protection of CII and key recourses. To encourage and mandate as appropriate, the use of validated and certified IT products. SANTOSH KHADSARE 18 STRATEGIES : PROTECTION AND RESILIENCE OF CRITICAL INFO INFRASTRUCTURE
  • 19. To mandate security audit of CII on periodic basis. To mandate certification of all security roles right from CISO /CSO to those involved in operation of CII. To mandate secure appl /software devp process. SANTOSH KHADSARE 19 STRATEGIES : PROTECTION AND RESILIENCE OF CRITICAL INFO INFRASTRUCTURE
  • 20. To undertake R&D programs aimed at short term, medium term and long term goals. To encourage R&D to produce cost effective, tailor-made and indigenous security solutions . To facilitate transition, diffusion. And commercialisation of outputs of R&D into commercial products and services for use in public and private sectors. SANTOSH KHADSARE 20 STRATEGIES : PROMOTION OF R&D IN CYBER SECURITY
  • 21. To set up Centre of Excellence in areas of strategic importance for the point of security of cyber space . To collaborate in joint R&D projects with industry and academia in frontline technologies and solution oriented research. SANTOSH KHADSARE 21 STRATEGIES : PROMOTION OF R&D IN CYBER SECURITY
  • 22. To create and maintain testing infrastructure and facilities of IT security product evaluation and compliance verification. To build trust relationships with product / system vendors and service providers for improving end-to-end supply chain security visibility. To create awareness of the threats, vulnerabilities and consequences of breach of security related to IT procurement. SANTOSH KHADSARE 22 STRATEGIES : REDUCIN SUPPLY CHAIN RISKS
  • 23. To foster education and trg programs both in formal and informal sectors to support the nation’s cyber security needs and build capacity. To est cyber security trg infrastructure across the country by way of public private partnership arrangements. To est cyber security concept labs for awareness and skill devp in key areas. To est institutional mechanisms for capacity building for Law Enforcement Agencies. SANTOSH KHADSARE 23 STRATEGIES : HRD
  • 24. To promote and launch a comprehensive national awareness program on security of cyber space. To sustain security literacy awareness and publicity campaign through electronic media. To conduct, support and enable cyber security workshops / seminars and certifications. SANTOSH KHADSARE 24 STRATEGIES : CREATING CYBER SECURITY AWARENESS
  • 25. To facilitate collaboration and cooperation among stakeholder entities. To create models of collaborations and engagement with all relevant stakeholders. To create a think tank for cyber security inputs, discussion and deliberations. SANTOSH KHADSARE 25 STRATEGIES : DEVP EFFECTIVE PUBLIC PVT PARTNERSHIPS
  • 26. INFO SHARING AND COOPERATION (among security agencies, CERTs, defence agencies, Law enforcement agencies and judicail systems). PRIORTIZED APPROACH FOR IMPLEMENTATION. SANTOSH KHADSARE 26 OTHER STRATEGIES