Direct Tax
Consulting
ESG Advisory
Indirect Tax
Growth Advisory
Internal Audit
BFSI Audit
Industry Audit
Valuation
RBI Services
SEBI Services
IRDA Registration
AML Advisory
IBC Services
NBFC Compliance
IRDA Compliance
Finance & Accounts
Payroll Compliance Services
HR Outsourcing
LPO
Fractional CFO
General Legal
Corporate Law
Debt Recovery
Select Your Location
The Securities and Exchange Board of India has issued new safeguards for regulated intermediaries like stock exchanges, depositories, and mutual funds to strengthen its cybersecurity policy. For depositories, stock exchanges, and other regulated entities, SEBI issued an advisory on February 22, 2023, requesting that they define the duties and responsibilities of the (CISO) chief information security officer and other senior personnel in light of the growing cybersecurity threats to the securities market. Additionally, it required them to make the security policy’s reporting and compliance requirements crystal clear. We’ll talk about the CSRIT-Fin recommendation and the advisory for regulated entities regarding cyber security in this blog.
To protect the investor’s interest in securities, to encourage the growth of the securities market, and to regulate it, this circular is being issued in accordance with the authority granted under Section 11 (1) of the Securities and Exchange Board of India Act, 1992[1]. The advisories that are released shall take effect immediately, and they are as follows:
This advice should be read in connection with any relevant SEBI circulars (such as the frameworks for annual system audits, cybersecurity, and cyber resilience, among others) and any changes that have been released by SEBI from time to time.
The regulated entities must submit their cybersecurity audit report and the compliance of the recommendation (conducted as per the applicable SEBI Cybersecurity and Cyber Resilience framework). The compliance must be reported in accordance with the current reporting process and the frequency of the relevant cybersecurity audit.
The following twelve procedures, recommended by CSIRT-Fin, are advised to be implemented by SEBI Regulated Entities (REs) in light of the growing cybersecurity threat to the securities market:
Global cyber strategy and tactical cybersecurity operations have been considerably impacted by the geopolitical events of the previous year, according to the World Economic Forum’s Global Cybersecurity Outlook 2023. The efficiency of cybersecurity controls with third parties is increasing, so efforts are made to tighten internal policies and procedures. It shows that immediate organisational actions to cyber risk will have a favourable long-term effect. SEBI’s guidelines present an opportunity to put the issues under control which will not only protect them today but helps to avoid these threats in future.
Also Read:SEBI Investment Advisors Amendment Regulations 2020Requirements for Investment Advisors Registration with SEBISEBI modifies cyber security framework for Stock Brokers/ Depository Participants
Nowadays, the purpose of the corporate existence is not only limited to making profits but also...
Maintaining a robust auditing process in the ever-evolving business world is crucial for thorou...
The end of the fiscal year is crucial for finance teams. Finance professionals spend much time...
The centre redesigned the AIF scheme to cover the FPOs (Farmer Producer Organizations) to stren...
India has long been a trading nation with a wealth of priceless potential and superior knowledg...
Are you human?: 7 + 1 =
Easy Payment Options Available No Spam. No Sharing. 100% Confidentiality
By changing the definition of B30 (beyond the top 30) cities to B45, market regulator SEBI intends to reduce the in...
21 Mar, 2023
The Foreign Portfolio Investors are required to get themselves registered for carrying the activity of investment....
13 Jan, 2023