Strengthening India’s National Cybersecurity Architecture

Context

Escalation in cyber-enabled crimes such as deepfake frauds, AI-powered phishing, ransomware attacks, and intrusions into critical digital infrastructure has heightened national security concerns.
Policy Response – The Government of India is reinforcing CERT-In’s mandate to proactively detect threats, strengthen cyber preparedness, and ensure continuity of India’s digital transformation.

About the National Cyber Response Authority (CERT-In)

Designation – Indian Computer Emergency Response Team (CERT-In), India’s apex body for cyber incident response.
Inception – 2004.
Parent Ministry – Ministry of Electronics and Information Technology (MeitY).
Statutory Basis – Section 70B, IT Act, 2000.
Role in Governance – Acts as the central pillar of India’s cyber defence architecture and ensures reliability of digital services.

Transformation of India’s Digital Landscape

Digital Reach Expansion – Massive growth driven by affordable connectivity and digital public infrastructure.
Connectivity Scale – Internet connections crossed 100 crore by 2025.
Data Intensity – Monthly per-user wireless data consumption surged to around 24 GB, among the highest globally.
FinTech Momentum – UPI dominates retail payments with record transaction volumes.
Fiscal Commitment – Dedicated allocation in Union Budget 2025–26 for strengthening cybersecurity systems.

Mandate and Operational Responsibilities

Public Sensitisation – Nationwide campaigns on cyber hygiene and safe online behaviour.
Threat Exchange Mechanisms – Real-time sharing of malware and attack indicators.
Early Warning Systems – Continuous dissemination of alerts and advisories.
Global Engagement – Cooperation with foreign CERTs, technology firms, and research institutions.
Skill Development – Regular trainings, workshops, and cyber simulation exercises.
Monitoring Infrastructure – Operates national command centres and cyber hygiene platforms.
Vulnerability Ecosystem – Encourages coordinated vulnerability reporting.
Investigative Support – Technical assistance to law enforcement agencies.
Crisis Preparedness – Facilitates cyber crisis management planning.

Performance Highlights (Recent Year)

Incident Mitigation – Handled over 29 lakh cybersecurity incidents.
Advisory Output – Thousands of alerts, vulnerability notes, and advisories issued.
Audit Ecosystem – Network of empanelled security auditors for critical sectors.
Human Resource Development – Tens of thousands of officials trained.
Preparedness Exercises – Large-scale cyber drills across strategic and civilian sectors.
Knowledge Products – Sector-specific cybersecurity guidelines and threat reports.

Supporting Cybersecurity Architecture

Cyber Hygiene Platform – Botnet cleaning and malware removal services for citizens.
Security Compliance Framework – Periodic audits and penetration testing of government systems.
National Monitoring Hub – Metadata-level surveillance for situational awareness.
Distributed CSIRT Network – Sectoral and State/UT incident response teams.
Crisis Response Framework – Structured response during severe cyber events.
Sector-Focused CSIRTs – Dedicated teams for finance and power sectors.

International Standing

Multilateral Recognition – India acknowledged for technology-driven cyber governance.
WEF Assessments – Cited for AI-based threat detection and intelligence sharing.
Global Research Collaboration – Contributions to frameworks on cyber resilience and AI risk.

Outlook

Strategic Importance – CERT-In remains central to India’s digital security ecosystem.
Future Direction – Emphasis on predictive intelligence, AI-driven defences, and deeper public-private cooperation.
Overall Impact – Strengthens trust in India’s digital economy and supports secure digital governance.

Source : PIB

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top