SEBI Mandates MIIs to Regularly Report Vulnerability Status of Their “Protected System” to NCIIPC
- News|Blog|Company Law|
- < 1 minute
- By Taxmann
- |
- Last Updated on 28 August, 2023
Circular No. SEBI/HO/MRD/TPD/P/CIR/ 2023/147, Dated: 24.08.2023
Earlier, SEBI prescribed a framework for Cyber Security and Cyber Resilience for stock exchanges, clearing corporations & depositories. Now, SEBI has modified the said framework.
Now, MIIs are mandated to conduct comprehensive cyber audit at least 2 times in a financial year. Along with cyber audit reports, henceforth, MIIs are directed to submit a declaration from the MD/CEO certifying that:
(a) Comprehensive measures and processes including suitable incentive/disincentive structures, have been put in place for identification/detection and closure of vulnerabilities in the organization’s IT systems.
(b) Adequate resources have been hired for staffing their Security Operations Center (SOC).
(c) There is compliance by the MII with all SEBI circulars and advisories related to cyber security.
Further, MIIs, whose systems have been identified as Critical Information Infrastructure (CII) by the National Critical Information Infrastructure Protection Centre (NCIIPC), are mandated to send regular updates/closure status of the vulnerabilities found in their respective “protected systems” to NCIIPC.
The provisions of the circular shall come into force with an immediate effect.
Click Here To Read The Full Circular
Disclaimer: The content/information published on the website is only for general information of the user and shall not be construed as legal advice. While the Taxmann has exercised reasonable efforts to ensure the veracity of information/content published, Taxmann shall be under no liability in any manner whatsoever for incorrect information, if any.
Taxmann Publications has a dedicated in-house Research & Editorial Team. This team consists of a team of Chartered Accountants, Company Secretaries, and Lawyers. This team works under the guidance and supervision of editor-in-chief Mr Rakesh Bhargava.
The Research and Editorial Team is responsible for developing reliable and accurate content for the readers. The team follows the six-sigma approach to achieve the benchmark of zero error in its publications and research platforms. The team ensures that the following publication guidelines are thoroughly followed while developing the content:
- The statutory material is obtained only from the authorized and reliable sources
- All the latest developments in the judicial and legislative fields are covered
- Prepare the analytical write-ups on current, controversial, and important issues to help the readers to understand the concept and its implications
- Every content published by Taxmann is complete, accurate and lucid
- All evidence-based statements are supported with proper reference to Section, Circular No., Notification No. or citations
- The golden rules of grammar, style and consistency are thoroughly followed
- Font and size that’s easy to read and remain consistent across all imprint and digital publications are applied