Latest News | Sebi Proposes Consolidated Cyber Security Framework

New Delhi, Jul 5 (PTI) Markets watchdog Sebi has proposed a consolidated cyber security and cyber resilience framework wherein all regulated entities need to put in place an up-to-date cyber crisis management plan.

The framework has been mooted to further strengthen cyber-risks, incidents prevention, preparedness, and response capacities of the entities.

Also Read | Shooting During US Independence Day 2023 Celebrations: 9 People Shot and Wounded in Washington DC While Enjoying Fourth of July Holiday.

Sebi has issued a consultation paper on 'Consolidated Cyber Security and Cyber Resilience Framework (CSCRF) for Sebi Regulated Entities' looks at providing a common structure for multiple approaches to cyber security to prevent any cyber-risks/incidents.

Comments have been sought on the consultation paper till July 25.

Also Read | Monsoon 2023 in India: IMD Forecasts Heavy Rainfall for South Gujarat, Saurashtra From July 6.

The Securities and Exchange Board of India (Sebi) said the framework is based on five concurrent and continuous functions of cyber security as defined by NIST -- Identify, Protect, Detect, Respond, and Recover.

NIST refers to the National Institute of Standards and Technology.

According to Sebi, the framework will continue to be updated and improved as technology and the securities market evolves as different REs (Regulated Entities) provide their feedback.

"All REs shall formulate an up-to-date Cyber Crisis Management Plan (CCMP)," the consultation paper issued on Tuesday said.

They would also have to put in place a comprehensive incident response management plan and respective Standard Operating Procedures (SOPs).

"Alerts generated from monitoring and detection systems shall be suitably investigated for Root Cause Analysis (RCA)," it noted.

With technological developments in the securities market, Sebi said that maintaining robust cyber security and cyber resilience to protect the organisations operating in the securities market from cyber risks/ incidents has become indispensable.

The regulator has been issuing targeted cyber security and cyber resilience frameworks for various regulated entities since 2015.

(The above story is verified and authored by Press Trust of India (PTI) staff. PTI, India’s premier news agency, employs more than 400 journalists and 500 stringers to cover almost every district and small town in India.. The views appearing in the above post do not reflect the opinions of LatestLY)