Itellisecure is now offering free Phishing Simulation trials for enterprises:Try it free
PolicyPublished: Jun 25, 2024·Updated: Jun 25, 2024

Can New Government Rules Stop India’s PSUs From Being Hacked?

Blog cover: Can New Government Rules Stop India’s PSUs From Being Hacked?

India's digital landscape is booming, and Public Sector Undertakings (PSUs) are vital in this growth. However, this digital expansion also exposes them to an ever-increasing threat of 'cyberattacks’. Recognizing this critical issue, the Indian government's Indian Computer Emergency Response Team (CERT-In) recently issued cybersecurity guidelines for PSUs. But can these guidelines effectively turn PSUs into a shield against cyber threats?

The new CERT-In guidelines outline a comprehensive framework for PSU cybersecurity in which key highlights include:

  • Mandatory reporting of cyber incidents: PSUs must now report cyber incidents within 6 hours of detection. This swift reporting allows CERT-In to analyze trends and issue timely advisories.
  • Penetration testing requirements: Regular penetration testing helps identify vulnerabilities in PSU systems before attackers exploit them.
  • Data localization mandates: Sensitive data must be stored within India's borders. This aims to restrict unauthorized access and strengthen data sovereignty.

The new CERT-In guidelines, if implemented effectively, could play a significant role in mitigating attacks. 

Cybersecurity is not just about guidelines. It also includes -

  • Employee training: Regularly educating employees on cyber threats and best practices is crucial.
  • Multi-layered security architecture: This includes firewalls, intrusion detection/prevention systems, and data encryption to create a layered defense.
  • Incident response plan: Having a clear plan to identify, contain, and recover from cyberattacks minimizes damage and downtime.

This proactive approach to cybersecurity demonstrates the effectiveness of strong practices beyond just adhering to guidelines.

The Road Ahead

The new CERT-In guidelines are a positive step towards fortifying India's PSUs against cyber threats. Mandatory reporting and penetration testing will undoubtedly improve overall cybersecurity posture. However, challenges remain. Implementing these guidelines across a vast network of PSUs requires significant resources and skilled personnel. Additionally, evolving cyber threats demand continuous improvement and adaptation of cybersecurity strategies.

Conclusion

The new CERT-In guidelines provide a much-needed framework for PSU cybersecurity in India. However, their effectiveness hinges on proper implementation, ongoing vigilance, and a commitment to a culture of cybersecurity within PSUs. Only through a multi-pronged approach, combining robust practices with strong guidelines, can India's PSUs truly become fortresses against cyber threats.

Connect with us to learn how we can help you protect your data, schedule a call with our cybersecurity experts at Itellisecure, and learn how we create a cyber-protected culture.

Back to Blogs