0.2019
7667766266
x

Cyber Attack Concerns

iasparliament Logo
October 11, 2018

What is the issue?

Indian banks and capital market participants have cyber risk management plans at an institutional level.

What are the cyber risks faced by capital market?

  • Emerging technologies and waves of digitisation have brought in their wake new challenges and exposed organisations to new risks.
  • It is estimated that cyber-attacks cost companies an estimated $500 billion in damages every year.
  • The primary concern facing organisations is that security breaches to technology and physical infrastructure could lead to data loss, financial losses, regulatory sanctions, reputational damage, operational disturbances, among other things.
  • Increasing global interconnectedness and the complexity of systems make large-scale cyber-attacks on financial market infrastructure even more pertinent and threaten the stability of financial markets.

What measures are planned to address such issues?

  • The strategies adopted for cyber risk management currently focus on reducing the risk of a cyber-attack and minimising the impact of a breach.
  • There are also plans for building resilience, that is, detecting and recovering quickly from the impact of a breach.
  • Globally, organisations are investing in developing a comprehensive set of cyber risk management capabilities that cover the entire value chain and ensure the risk is efficiently managed across the ecosystem.

What measures were taken by government in this regard?

  • Indian regulators have focused on cyber security as a core concern for several years now.
  • Securities market regulator, the Securities and Exchange Board of India, issued guidelines on cyber security and cyber resilience to market infrastructure providers in 2015 and developed guidelines for registrars in 2017.
  • In 2016, the RBI released a comprehensive set of requirements for internal cyber security frameworks.
  • The government has also undertaken initiatives including the Information Technology Act, 2000.
  • It has set up the nodal cyber security agency, CERT-In, to respond to computer security incidents.
  • The National Critical Information Infrastructure Protection Centre, is the central agency to facilitate safe, secure and resilient information infrastructure for critical sectors of the economy.

What measures Indian Industries must take?

  • Traditional approaches to cyber risk mitigation have failed thus far and organisations are investing in identifying new approaches that include the use of advanced cloud-based SaaS services and platform-based approaches to security risks.
  • Many of India’s leading banks and capital market participants have a well-defined plan for cyber risk management at the institutional level.
  • However, Indian Industries can take a few steps to ensure greater effectiveness of cyber security plans.
  • Industries should also consider the adoption of a common set of standards by capital market participants.
  • They should continuously strengthen IT governance, review policies, processes and systems to keep pace with changing risks and attack vectors.
  • Apart from these measures it is important to increase the collaboration among financial institutions.

 

Source: Business Standard

Login or Register to Post Comments
There are no reviews yet. Be the first one to review.

ARCHIVES

MONTH/YEARWISE ARCHIVES

sidetext
Free UPSC Interview Guidance Programme
sidetext