Download Testbook App

Recent Update,
Objectives, Main
National Cyber Components and
Security Policy Cyber Security in
India

The National Cyber Security Policy intends to facilitate the construction of a safe computer environment
and to enable enough trust and confidence in electronic transactions, as well as to guide stakeholders'
activities for cyber space security.

The National Cyber Security Policy is significant for both the UPSC Prelims and IAS GS Paper 3 Syllabus
& Exam Pattern of the UPSC Internal Security Mains Syllabus.

In this article, we will provide you with all features and necessary information on the National Cyber
Security Policy. Study major topics of Internal Security from the perspective of UPSC Exams with us.

Recent Update
• The Data Security Council of India (DSCI), led by Lt. General Rajesh Pant, created the National
Cyber Security Strategy in 2020. The research focused on 21 areas to guarantee India's
cyberspace is safe, secure, trustworthy, resilient, and dynamic.
• The revised National Cyber Security Strategy 2021, which takes a holistic approach to
addressing the concerns of national cyberspace security, was presented to the Parliament in
2022.
• Recently, in 2022, the UK Government and the National Cyber Security Coordinator of India's
National Security Council Secretariat (NSCS) collaborated with the International Counter
Ransomware Initiative- Resilience Working Group.
• The Prime Minister's Office (PMO) is actively reviewing the country's national cybersecurity
policy. Despite an increase in assaults on India's networks, the Centre has yet to execute the
National Cyber Security Strategy.
• The International Counter Ransomware Initiative - Resilience Working Group, which is being led
by India under the leadership of the National Security Council Secretariat, successfully designed
and conducted the Cyber Security Exercise "Synergy" for 13 Countries. This was done by the
Indian Computer Emergency Response Team (CERT-In) and the Cyber Security Agency of
Singapore (CSA).
• In 2022, CERT-In observed "Cyber Jaagrookta Diwas" in order to educate and inform Internet
users on how to protect themselves against cybercrimes and fraud.
 Download Testbook App

What Is Cyber Security?

• Cyber security is the activity of protecting computers, servers, mobile devices, electronic
systems, networks, and data against hostile assaults. It is the technique of guarding against
digital assaults on systems, networks, and programmes.
• With an expanding number of people, devices, and programmes in the contemporary
organisation, as well as an increasing deluge of data, cybersecurity is becoming increasingly
important.

Learn more about Cyber Security in detail!

National Cyber Security Policy 2013

• The Government of India issued the National Cyber Security Policy (NCSP) in 2013, which
included many tactics for countering cyber security threats.
• The purpose of this policy is to provide individuals, companies, and the government with a
secure and dependable cyberspace. It also strives to monitor, protect, and enhance
cybersecurity defences.
• Through a mix of institutional structures, procedures, technology, and collaboration, this Policy
intends to secure the information infrastructure in cyberspace, decrease vulnerabilities, create
capacities to avoid and respond to cyber attacks, and limit damage from cyber events.

Vision of National Cyber Security Policy, 2013:

• To build a secure and resilient cyberspace for citizens, businesses and Government.

Mission of National Cyber Security Policy, 2013:

• To protect information and information infrastructure in cyberspace, build capabilities to prevent

and respond to cyber threats, reduce vulnerabilities and minimize damage from cyber incidents
through a combination of institutional structures, people, processes, technology and
cooperation.

Need for a National Cyber Security Strategy

• India's society is increasingly reliant on digital technology for communication, banking, and other
areas of daily life. The use of social media and digital payments has increased significantly.
• In 2022, ransomware occurrences increased by 51%, according to the Indian Computer
Emergency Response Team (CERT-In).
• Cybercrime against individuals and institutions is on the rise. Rogue elements and criminal
syndicates have become more adept in their local and international hacking operations and
targeted phishing attempts.
• In light of increasing geopolitical dynamics in South Asia and the Indo-Pacific, cyber-attacks by
India's rivals have increased. State and non-state actors have launched attacks against India's
nuclear infrastructure, electricity systems, telecom equipment ecosystems, and financial
systems.

Page - 2
 Download Testbook App

• After Galwan, China already attacked India's energy network and attempted to enter the
National Security Adviser in 2010. These attempts have had a profound influence on India's
view of national security.

Objectives of National Cyber Security Policy

• To build a safe cyber environment in the country, develop appropriate trust and confidence in IT
systems and cyberspace transactions, and so increase IT adoption in all sectors of the
economy.
• To provide information protection when in process, processing, storage, and transport in order
to preserve citizen data privacy and reduce economic losses due to cybercrime or data theft.
• To improve law enforcement skills and allow successful cyber crime prevention, investigation,
and conviction by appropriate legislative action.
• To raise awareness of the integrity of ICT goods and services by developing infrastructure for
testing and validating their security.
• To give firms with financial incentives for adopting standard security procedures and processes.
• Through a successful communication and promotion approach, a culture of cyber security and
privacy will be established, allowing responsible user behaviour and activities.
• To meet national security needs by developing appropriate indigenous security technologies
through frontier technology research, solution-oriented research, and commercialization.
• To provide an assurance framework for the establishment of security policies, as well as to
promote and enable activities for conformance to global security standards and best practises
through conformity assessment.
• To fortify the regulatory framework in order to ensure a secure cyberspace ecology.

Also study about the Concept of Cybercrime in detail!

Main Components of the National Cyber Security Strategy

National cybersecurity strategy (NCSSs) are the primary documents used by nation governments to
establish strategic directives, goals, and specific actions to reduce cybersecurity risk. This section
describes the Main Components of the National Cyber Security Strategy for deeper understanding of cyber
security strategy:

Strengthening the Regulatory framework

• To require frequent audits and evaluations of the sufficiency and effectiveness of information
infrastructure security in accordance with the regulatory framework.
• To empower, educate, and increase public understanding of the regulatory system.

Promotion of Research & Development in cyber security

• Encourage R&D to generate cost-effective, tailor-made indigenous security solutions that

address a broader variety of cyber security concerns, with an eye toward export markets.
• To assist the transfer, dissemination, and commercialization of R&D outputs into commercial
goods and services for use in the public and private sectors.

Page - 3
 Download Testbook App

Securing E - Governance services

• To promote the use of Public Key Infrastructure (PKI) for trustworthy communication and
transactions throughout the government.
• To hire information security specialists to help with e-Government projects and to assure
compliance with security best practises.

Encouraging Open Standards

• To promote the adoption of open standards in order to improve interoperability and data sharing
among various goods or services.
• To encourage the formation of a public-private partnership to increase the availability of tested
and certified IT solutions based on open standards.

Creating an assurance framework

• Identify and categorise information infrastructure facilities and assets at the entity level in terms
of risk perception in order to implement appropriate security protection measures.
• To promote secure application procedures that adhere to global best standards.

Creating a secure cyber ecosystem

• To guarantee that all firms set up a designated budget for developing cyber security
programmes and responding to cyber events.
• To offer fiscal schemes and incentives to incentivize entities to establish, enhance, and update
cyber security-related information infrastructure.

You can also learn about NATGRID here!

Concerns Associated with National Cyber Security Policy,

2013
• India's cyber security responses to attacks have been reacted to in a reactive and fragmented
manner. Delays have serious consequences for India's digital revolution, diplomatic efforts, and
domestic privacy.
• Within a trust-based ecosystem, coordination between government agencies and the private
sector does not work.
• While India's cyber security activities have primarily been defensive in nature, the government
has also established capabilities for aggressive endeavours. There are already ways for both
defensive and aggressive cyber reactions.
• According to statistics, China is responsible for one-third of all global cyber-attacks. They are
now developing technology that will allow them to connect to the internet via satellite channels.
• WhatsApp sued Israeli surveillance firm NSO Group, saying that the business enabled clients in
using malware to get access to the phones of over 1,400 customers, including those in India.
Journalists and political opponents were among those targeted by the hack.
• Pakistan is employing APT 36 to attack Indian firms. In reality, there is a hacking gang known as
LAZARUS that is widely recognised for carrying out financial targeted assaults in India,
Bangladesh, and other South Asian nations.

Page - 4
 Download Testbook App

Study more topics of Internal security UPSC Notes Here!

Cyber Security Policy in India’s Digital Landscape

• Cyberattacks on India's digital environment have increased in scale and sophistication in recent
months, targeting sensitive personal and commercial data as well as essential information
infrastructure, harming the economy and national security.
• The modifications to the Information Technology Rules 2021 must also be authorised in order
for users and intermediaries to comply.
• The Indian government issued a National Cyber Security Policy (NCSP) in 2013, outlining a
variety of tactics for combating cyber-attacks. There has been no policy implementation over the
past eight years.
• Furthermore, the National Security Security Coordinator should be subjected to frequent
network cyber audits by government authorities. When implemented as part of a national Cyber
Security Policy, these procedures will enable for improved cyber security management and
implementation.
• Through its upcoming National CyberSecurity Policy, India has the potential to integrate its
domestic policy with its global goals.

Delay in announcing India’s National Cyber Security Policy

• In 2020, Indian Prime Minister declared in his Independence Day address that India will soon
reveal its new National Cyber Security Policy.
• The new strategy has yet to be released, while the current national Cyber Security Policy from
2013 is out of date and poorly administered.
• Delays in establishing India's National Cyber Security Policy minimise cyber security issues,
which have gained prominence in other local and international arenas. So far, the approach has
been patchy, reactive, and sporadic.
• Without a policy, it is normal to be reactive to new issues from many sources. The reality of the
cyber security landscape, on the other hand, necessitate a whole-of-government strategy and
awareness of the challenges.

Conclusion
The government is concerned about increasing cyber risks and vulnerabilities as India's population and
government services become more online. This fear prompted numerous ministries to take action.
However, India's cyber security system has a long way to go. While India's primary reaction to
cyberattacks has been to conduct audits and strengthen network security, a national Cyber Security Policy
might establish a more comprehensive framework that can be used consistently across the country.
Launching an updated and comprehensive national Cyber Security Policy is critical.

Testbook provides a set of comprehensive notes for different competitive exams. Testbook is always on
the top of the list because of its best quality assured products like live tests, mocks, Content pages, GK
and current affairs videos, and much more. To study more topics from Environment India for UPSC,
download the Testbook App now!

Page - 5