Register Daily Newsletters My Bookmarks My Queries (D. Forum) My Replies (D. Forum) My Articles My Inbox (PM) Feedback/ Suggestions
Tax Management India. Com
Law and Practice  :  Digital eBook
Research is most exciting & rewarding

   For Sales / Support:
WhatsApp WhatsApp 9911796707
Case Laws Acts Notifications Circulars Classification Forms Manuals Articles News D. Forum Highlights Notes
TMI - e-Newsletter     TaxTMI    TDS already deducted but not credited? AO must...     TaxTMI    Tax evasion case: Petitioners' delay in responding...     TaxTMI    Streamlining Bonus Shares: SEBI Outlines T+2...     TaxTMI    Optional centralized fee payment platform launched...     TaxTMI    Court rejects refund claim for unutilized credit of...     TaxTMI    Tax officer's appeal against Tribunal's deletion of...     TaxTMI    Court quashes tax demand on consultancy fees paid...     TaxTMI    New SEBI norm allows using client's cash...     TaxTMI    SEBI renews Metropolitan Stock Exchange's...     TaxTMI    Exemption for Yellow Peas extended, 20% duty on...     TaxTMI    Customs revises import tariff values for edible...     TaxTMI    Authorities can't prosecute GST offenses under IPC,...     TaxTMI    Denial of personal hearing before issuing adverse...     TaxTMI    Tax demand discrepancies led to unlawful property...     TaxTMI    Penalty upheld for delayed tax audit report filing...     TaxTMI    Latest Case-Laws     TaxTMI    Latest Notifications + Circulars     TaxTMI    GST Council Decisions     TaxTMI       Right Stop
  TMI - Tax Management India. Com
Follow us:
  Facebook   Twitter   Linkedin   Telegram

TMI Blog

Home

Cybersecurity and Cyber Resilience Framework (CSCRF) for SEBI Regulated Entities (REs)

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... Funds (MFs)/ Asset Management Companies (AMCs) All Portfolio Managers All Registrar to an Issue and Share Transfer Agents (RTAs) All Stock Brokers through Exchanges All Stock Exchanges All Venture Capital Funds (VCFs) Dear Sir / Madam, Subject: Cybersecurity and Cyber Resilience Framework (CSCRF) for SEBI Regulated Entities (REs) Background: 1. SEBI had issued Cybersecurity and Cyber resilience framework for Market Infrastructure Institutions (MIIs) in 2015. Subsequently, SEBI had issued other Cybersecurity and Cyber resilience frameworks in line with MIIs circular of 2015 for following REs: 1.1. Stock Brokers and Depository Participants 1.2. Mutual Funds (MFs)/ Asset Management Companies (AMCs) 1.3. KYC Registration Agencies (KRAs) 1.4. Q .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... security functions: 6.1. Governance 6.2. Identify 6.3. Protect 6.4. Detect 6.5. Respond 6.6. Recover 7. CSCRF follows a graded approach and classifies the REs in the following five categories based on their span of operations and certain thresholds like number of clients, trade volume, asset under management, etc.: 7.1. Market Infrastructure Institutions (MIIs) 7.2. Qualified Res 7.3. Mid-size REs 7.4. Small-size Res 7.5. Self-certification REs 8. The framework provides a structured methodology to implement various solutions for cybersecurity and cyber resiliency. In order to facilitate better understanding and ease of compliance, the document is divided into four parts: 8.1. Part I: Objectives and Standards It contains definitions, framewo .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... oarding of SOC can be done through RE s own/ group SOC or Market SOC or any other third-party managed SOC for continuous monitoring of security events and timely detection of anomalous activities. 13. As compliance with the cybersecurity guidelines may be onerous for smaller REs due to the lack of knowledge and expertise in cybersecurity and the cost factor involved in setting up own SOC. Therefore, CSCRF mandates NSE and BSE to set up Market SOC (M-SOC) with the objective of providing cybersecurity solutions to such categories of REs. 14. CSCRF contains provisions with respect to various areas such as requirements of IT services, Software as a Service (SaaS) solutions, hosted services, classification of data, audit for software solutions/ .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... e., applicable standards and guidelines) of CSCRF, and conduct cyber audit as per CSCRF after the above-mentioned timelines. Cyber audit reports along with other required documents shall be submitted as per timelines provided in the CSCRF. 19. The reporting of compliance with respect to CSCRF shall be done to the authority as per the existing mechanism of reporting for cybersecurity audit. 20. The detailed framework is enclosed at Annexure-1 of this circular. 21. This circular is being issued in exercise of powers conferred under Section 11 (1) of the Securities and Exchange of India Act, 1992 , to protect the interests of investors in securities and to promote the development of, and to regulate the securities market. 22. The circular is i .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

 

 

 

 

Quick Updates:Latest Updates

What's New:
    Latest Case Laws
What's New:
    Latest Notifications
What's New:
    Latest Circulars
F: ITC AVAILABLE ON LIFT INSTALLED IN COMMERCIAL BUILDING GIVEN FOR RENT
H: Govt scraps Special Additional Excise Duty on Crude Oil Production eff...
N: Central Government approves Auroville Foundation as ‘Other Institution...
F: 194 R and GST
F: issue settled in GST audit u/s. 65 and after dropping ASMT-12, can the...
F: Refund of interest on GST Refund of pre-deposit
F: ITC Credit for Raw materials sold as Scrap
A: Understanding the Classification of Parts and Accessories in Customs T...
A: HC directs Department to accept and dispose the appeal filed beyond co...
A: GEOGRAPHICAL INDICATIONS OF GOODS (HOLDING INQUIRY AND APPEAL) RULES, 2024
A: SCN served via E-mail at the time of GST Registration Cancellation is ...
H: Prolonged litigation allows discontinuation of bank guarantee, enablin...
H: Brush Cutters Misdeclared as Reapers to Evade Duty; Company Penalized ...
H: Customs duty dispute: High seas transaction value upheld by court over...
H: US-Indian citizen penalized for illegal farmland purchase in India des...
H: Tax offense compounding timelines in guidelines invalid, exceeded stat...
H: Tax Appeal Revived: Court Overrules Limitation Objection on Certified Copy.
H: Reopening tax assessment challenged, dismissed - no apparent error to ...
H: Assessee's claim for export deduction upheld; reassessment disallowing...
H: Company under voluntary liquidation denied MAT exemption, book profit ...
H: Cash deposit details inadequate to reopen tax assessment. Court quashe...
H: Reopening of assessment upheld for undisclosed foreign bank account in...
H: Real estate firm's case: Transfer pricing, PF/ESI, cash transaction ru...
H: Tax on unexplained cash deposits; income sources unproven.
H: Financial institution's takeover of immovable properties from guaranto...
F: whether Additional place of business is mandatory?
N: Amendment in Import Policy Condition under ITC(HS) 08028010 of Chapter...
C: Amendment of Circular 07/2024-Customs to further ease the process of p...
F: Joint Development Agreement for land
A: REGISTRATION OF FIRMS UNDER INCOME TAX ACT, 1961