India has emerged as a significant player in the field of cybersecurity, with numerous startups gaining international recognition. However, the country is facing a growing challenge due to the increasing number of cyber attacks and data breaches. In response to this, Indian Prime Minister Narendra Modi has announced a plan to convene a cybersecurity gathering with the goal of enhancing India’s cybersecurity posture for critical information infrastructure protection.
Critical information infrastructure, or CII, is a comprehensive sector that encompasses security, network, and humans, playing a crucial role in facilitating the digital infrastructure in the country. It includes complex technological frameworks and interdependent mechanisms that are vital to India’s telecommunications, energy, transportation, finance, and various government entities. The Indian government possesses the power to declare any data, database, IT network, or communication infrastructure as CII to protect that digital asset.
India’s critical information infrastructure is the key pillar in the country’s sustainability against cyber attacks and online fraud. It serves as the backbone of the nation and the government has been working towards providing safety to public data and implementing mitigation strategies to fight the ongoing cyber war.
India faces multiple cyber attacks at regular intervals, and according to a report by Symantec Corp, the country ranks among the top five nations affected by cybercrime. Despite having a digitally progressive government and a thriving IT-enabled service sector, India lags in critical infrastructure, national digital economy adoption, and cybersecurity regulations.
However, India has several security agencies that work tirelessly to enhance the country’s cybersecurity posture. The Computer Emergency Response Team (CERT-In) and the National Critical Information Infrastructure Protection Centre (NCIIPC) are at the forefront of protecting critical infrastructure security in India. CERT-In builds guidelines and reports cybersecurity incidents, while NCIIPC is responsible for safeguarding critical information infrastructure across various sectors.
Recognizing the urgency of addressing cybersecurity concerns, Prime Minister Narendra Modi intends to hold a high-level meeting to tackle this issue. The gathering will primarily focus on enhancing India’s cybersecurity defenses against cyber attacks, particularly from neighboring countries. With India ranking third globally for the highest number of internet users, robust cybersecurity measures are crucial.
The role of cybersecurity institutions like CERT-In is crucial in ensuring cybersecurity in India. CERT-In is an early warning system for vulnerabilities, data breaches, and cyber attacks. It collects and analyzes information from various sources and disseminates it to relevant stakeholders. CERT-In also coordinates incident response efforts, assisting affected organizations in recovering from cyber attacks.
The Indian government is taking significant steps to enhance the nation’s cyber defenses. CERT-In recently released new guidelines mandating timely reporting of cybersecurity incidents and maintaining logs for a specified period. Additionally, the government is finalizing the National Cyber Security Strategy 2023, which supersedes the 2013 policy. This strategy will provide structured guidance on cybersecurity to leverage better cybersecurity measures for India’s critical information infrastructure.
In conclusion, India’s critical information infrastructure is facing significant risks due to the increasing number of cyber attacks and data breaches. The government recognizes the importance of addressing these concerns and is taking steps to strengthen cybersecurity in the country. Institutions like CERT-In play a crucial role in ensuring cybersecurity and coordinating incident response efforts. With the upcoming cybersecurity gathering, India aims to enhance its cybersecurity defenses and protect its critical information infrastructure from cyber threats.