India News | Delhi Govt to Conduct Cyber Security Audit of IT System

New Delhi, Mar 6 (PTI) The Delhi government will conduct a cyber security audit of its Information Technology (IT) system for the detection of vulnerabilities to prevent any breach of security and data theft, officials said on Thursday.

The government has geared up for hiring a CERT-in (Indian Computer Emergency Response Team) empanelled agency for the three-year project, they said.

Also Read | SEBI Violations Settlement: 5 Officials of Add-Shop E-Retail Limited and White Organic Agro Limited Pay INR 95.55 Lakh To Settle Regulatory Violations Case.

The officials said the hypertext transfer protocols (https) have become the easiest path for cyber attackers to intrude on a network, with growth in vulnerabilities in applications.

The in-house and outsourced applications often put speedy development and convenience over security, which results in vulnerabilities such as authentication bypass, SQL (programming language) injection and cross-site scripting among others, they said.

Also Read | Rajneet Singh Kohli Quits as Britannia Industries CEO: FMCG Major Announces Its CEO’s Resignation, Company's Shares Dip.

The IT Department of the Delhi government has invited bids from eligible vendors for a project to detail an audit report which will be prepared to outline all the discovered vulnerabilities categories as critical, high, medium and low severity.

The entire security audit report for any website or application will be 10 working days from the date the request is formally communicated by the department. The selected agency will also submit a comprehensive report after the vulnerabilities are addressed, said the document.

It will also issue a 'safe to host' certificate after all identified vulnerabilities are resolved and validated according to the security audit requirements.

The security audit report will also provide detailed effectiveness of the security controls that exist in departments, local bodies and corporations under the Delhi government.

The report will also offer remedial advice for the identified vulnerabilities along with a detailed explanation followed by resolution of the issues.

It will be also expected of the vendor that a follow-up test is carried out to ensure that all the vulnerabilities originally found are fixed, added the document.

(The above story is verified and authored by Press Trust of India (PTI) staff. PTI, India’s premier news agency, employs more than 400 journalists and 500 stringers to cover almost every district and small town in India.. The views appearing in the above post do not reflect the opinions of LatestLY)