Comments
SEBI, on Tuesday, came out with a consultation paper on boosting cyber security framework for entities regulated by it.
The consultation paper on 'Consolidated Cyber Security and Cyber Resilience Framework (CSCRF) for SEBI Regulated Entities' looks at providing a common structure for multiple approaches to cyber security to prevent any cyber-risks/incidents.
SEBI said the framework is based on five concurrent and continuous functions of cyber security as defined by NIST -- Identify, Protect, Detect, Respond, and Recover.
Also read: SEBI asks PMS with AUM of over ₹3,000 crore to enhance cyber security
NIST refers to the National Institute of Standards and Technology.
"All REs shall formulate an up-to-date Cyber Crisis Management Plan (CCMP)," the consultation paper said, adding that they would also have to put in place a comprehensive incident response management plan and respective Standard Operating Procedures (SOPs).
"Alerts generated from monitoring and detection systems shall be suitably investigated for Root Cause Analysis (RCA)," it noted.
Comments on the consultation paper can be submitted to the regulator till July 25.
Comments
Comments
Comments have to be in English, and in full sentences. They cannot be abusive or personal. Please abide by our community guidelines for posting your comments.
We have migrated to a new commenting platform. If you are already a registered user of TheHindu Businessline and logged in, you may continue to engage with our articles. If you do not have an account please register and login to post comments. Users can access their older comments by logging into their accounts on Vuukle.