The planned National Cybersecurity Strategy of India would include a measure of sovereignty, as well as for instructions for businesses to solve deficiencies in the Indian ecosystem.
While speaking at Pursuit 2021, an industry event organized by the Internet and Mobile Association of India (IAMAI), Lt. General Rajesh Pant, the country’s National Cybersecurity Coordinator, said, “An element of sovereignty will be incorporated in the national cyberspace to create a safe, secure, resilient, trusted, and vibrant cyberspace for our national prosperity.”
Pant describes it as a “concept” that applies to the entire ecosystem. As a result, it will address cybercrime, capacity building, audits, research, and development, as well as all other elements. There will be several deliverables.
The plan will be accompanied by the ‘Common but Differentiated Duty (CBDR)’ theory, which places cybersecurity responsibility on all stakeholders, including corporations, education, users, and governments. The policy is seeking cabinet approval, and once authorized, it will differ from the 2013 version by being “futuristic” and targeting the “entire ecosystem.”
Pant added that, given the way 2021 has begun, the year will be dubbed “ransomware.” He claims that $1 trillion has been paid in ransom so far and that the scope of attacks is rapidly increasing. The financial sector will need to be more vigilant and ensure that all necessary steps are taken to maintain good cybersecurity. He proposed a model called “zero trust architectures,” which will be implemented. It’s a network security concept that assumes everyone close to a network is malicious.
The Personal Data Protection (PDP) law is expected to be introduced in Parliament during the upcoming monsoon session. The PDP, like the European General Data Protection Regulations (GDPR), allows businesses to be fined if cyber-attacks aren’t reported on time.
Everyone is responsible for cybersecurity. The private sector now controls the majority of sophisticated industries, such as telecommunications. In the private sector, there are major players like Reliance, Airtel, and Vodafone. In such instances, the private sector must be similarly prepared for state-sponsored Advanced Persistent Threat (APT) attacks.