SEBI issues ‘Cyber Security and Cyber Resilience Framework’ for Portfolio Managers

  • Blog|News|Company Law|
  • < 1 minute
  • By Taxmann
  • |
  • Last Updated on 1 April, 2023

Cyber Security; Portfolio Managers

Circular No. SEBI/HO/IMD/IMD-PoD-1/P/CIR/2023/046, dated: 29.03.2023

SEBI has introduced a cybersecurity and Cyber Resilience framework for all portfolio managers having an asset worth of at least Rs 3,000 crore. As per the new norms, portfolio managers are required to report any instances of cyber-attacks or breaches encountered by them within 6 hrs of detecting such incidents.

Portfolio managers must have a Recovery Time Objective and a Recovery Point Objective of not more than 4 hrs and 30 min. The new guidelines shall be effective from 01.10.2023.

Further, the framework suggests a five point process to identify, assess, and manage cyber security risks associated with processes, information, networks, and systems –

(a) Identify’ critical IT assets and risks associated with such asset

(b) Protect’ assets by deploying suitable controls, tools, and measures

(c) Detect’ incidents, anomalies, and attacks through appropriate monitoring tools/processes,

(d) Respond’ by taking immediate steps after identification of the incident, anomaly, or attack

(e) Recover’ from incident through incident management, disaster recovery, and business continuity framework.

Also, Portfolio Managers should conduct periodic training programs to enhance awareness level among the employees and outsourced staff, vendors, etc. on IT / Cyber security policy and standards. Special focus should be given to build awareness levels and skills of staff from non-technical disciplines.

Click Here To Read The Full Circular

Disclaimer: The content/information published on the website is only for general information of the user and shall not be construed as legal advice. While the Taxmann has exercised reasonable efforts to ensure the veracity of information/content published, Taxmann shall be under no liability in any manner whatsoever for incorrect information, if any.

Leave a Reply

Your email address will not be published. Required fields are marked *

Everything on Tax and Corporate Laws of India

To subscribe to our weekly newsletter please log in/register on Taxmann.com

Author: Taxmann

Taxmann Publications has a dedicated in-house Research & Editorial Team. This team consists of a team of Chartered Accountants, Company Secretaries, and Lawyers. This team works under the guidance and supervision of editor-in-chief Mr Rakesh Bhargava.

The Research and Editorial Team is responsible for developing reliable and accurate content for the readers. The team follows the six-sigma approach to achieve the benchmark of zero error in its publications and research platforms. The team ensures that the following publication guidelines are thoroughly followed while developing the content:

  • The statutory material is obtained only from the authorized and reliable sources
  • All the latest developments in the judicial and legislative fields are covered
  • Prepare the analytical write-ups on current, controversial, and important issues to help the readers to understand the concept and its implications
  • Every content published by Taxmann is complete, accurate and lucid
  • All evidence-based statements are supported with proper reference to Section, Circular No., Notification No. or citations
  • The golden rules of grammar, style and consistency are thoroughly followed
  • Font and size that's easy to read and remain consistent across all imprint and digital publications are applied