 "Market regulator Sebi mulls consolidated framework for cyber security")
The Securities and Exchange Board of India (Sebi) on Tuesday proposed a consolidated framework for cybersecurity, laying down a common structure for various regulated entities like stock exchanges, brokers, asset management companies and portfolio managers, among others.
In a consultation paper, titled Consolidated Cybersecurity and Cyber Resilience Framework (CSCRF), the markets regulator said that the new framework would supersede nearly 15 circulars issued separately for various segments since 2015.
Sebi noted that the new consolidated framework has been based on five concurrent and continuous functions of cybersecurity, namely: identify, protect, detect, respond, and recover.
Under the proposed framework, Market Infrastructure Institutions (MIIs) like stock exchanges and depository participants will be required to conduct a cyber-audit twice a year while all other regulated entities will have to do it once each year. The watchdog also laid down timelines for other levels of assessment and review of cyber resilience.
The draft guidelines specify baseline cybersecurity measures which will be applicable on all entities, supplementary measures applicable only on specified entities, and a set of additional guidelines for MIIs.
The regulator noted that it had also developed a cyber capability index (CCI) to rate the preparedness and resilience of the cybersecurity framework of the MIIs.
The proposed norms also set a standard for compliance from these entities with regards to identification of vulnerabilities, cyber threats, cloud assets, etc. These standards will have to be followed by third party service providers and outsourcing staff too.
“With these technological developments in the securities market, maintaining robust cybersecurity and cyber resilience to protect the organisations operating in the securities market from cyber-risks/incidents has become indispensable,” Sebi noted in the paper.
The regulator has invited comments on the proposal by July 25.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%