Register Daily Newsletters My Bookmarks My Queries (D. Forum) My Replies (D. Forum) My Articles My Inbox (PM) Feedback/ Suggestions
Tax Management India. Com
Law and Practice  :  Digital eBook
Research is most exciting & rewarding

   For Sales / Support:
WhatsApp WhatsApp 9911796707
Case Laws Acts Notifications Circulars Classification Forms Manuals Articles News D. Forum Highlights Notes
TMI - e-Newsletter     TaxTMI    Excess Input Tax Credit penalty appeal dismissed...     TaxTMI    Excessive delay in issuing show cause notice &...     TaxTMI    Rectification: Show Cause Notice quashed for period...     TaxTMI    Investor locked into long-term capital gains bonds;...     TaxTMI    Customs duty dispute: Imported goods classified as...     TaxTMI    Undisclosed investments, agricultural land...     TaxTMI    Taxpayer's victory: AO's order upheld, PCIT's...     TaxTMI    Non-resident Singapore firm's software licensing...     TaxTMI    Bank penalized for delayed reporting of high-value...     TaxTMI    EOUs face automated Import Rules from 17.09.2024 -...     TaxTMI    Steel Extending validity of customs valuation rules...     TaxTMI    Relaxations for employee benefit trusts, aligned...     TaxTMI    New SEBI circular relaxes rules for REITs, enables...     TaxTMI    Phased rollout of quality standards for low-voltage...     TaxTMI    Virtual Hearings Mandatory: CBIC Reinstates Video...     TaxTMI    Latest Case-Laws     TaxTMI    Latest Notifications + Circulars     TaxTMI    GST Council Decisions     TaxTMI       Right Stop
  TMI - Tax Management India. Com
Follow us:
  Facebook   Twitter   Linkedin   Telegram

TMI Blog

Home

Cybersecurity and Cyber Resilience Framework (CSCRF) for SEBI Regulated Entities (REs)

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... Funds (MFs)/ Asset Management Companies (AMCs) All Portfolio Managers All Registrar to an Issue and Share Transfer Agents (RTAs) All Stock Brokers through Exchanges All Stock Exchanges All Venture Capital Funds (VCFs) Dear Sir / Madam, Subject: Cybersecurity and Cyber Resilience Framework (CSCRF) for SEBI Regulated Entities (REs) Background: 1. SEBI had issued Cybersecurity and Cyber resilience framework for Market Infrastructure Institutions (MIIs) in 2015. Subsequently, SEBI had issued other Cybersecurity and Cyber resilience frameworks in line with MIIs circular of 2015 for following REs: 1.1. Stock Brokers and Depository Participants 1.2. Mutual Funds (MFs)/ Asset Management Companies (AMCs) 1.3. KYC Registration Agencies (KRAs) 1.4. Q .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... security functions: 6.1. Governance 6.2. Identify 6.3. Protect 6.4. Detect 6.5. Respond 6.6. Recover 7. CSCRF follows a graded approach and classifies the REs in the following five categories based on their span of operations and certain thresholds like number of clients, trade volume, asset under management, etc.: 7.1. Market Infrastructure Institutions (MIIs) 7.2. Qualified Res 7.3. Mid-size REs 7.4. Small-size Res 7.5. Self-certification REs 8. The framework provides a structured methodology to implement various solutions for cybersecurity and cyber resiliency. In order to facilitate better understanding and ease of compliance, the document is divided into four parts: 8.1. Part I: Objectives and Standards It contains definitions, framewo .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... oarding of SOC can be done through RE s own/ group SOC or Market SOC or any other third-party managed SOC for continuous monitoring of security events and timely detection of anomalous activities. 13. As compliance with the cybersecurity guidelines may be onerous for smaller REs due to the lack of knowledge and expertise in cybersecurity and the cost factor involved in setting up own SOC. Therefore, CSCRF mandates NSE and BSE to set up Market SOC (M-SOC) with the objective of providing cybersecurity solutions to such categories of REs. 14. CSCRF contains provisions with respect to various areas such as requirements of IT services, Software as a Service (SaaS) solutions, hosted services, classification of data, audit for software solutions/ .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

..... e., applicable standards and guidelines) of CSCRF, and conduct cyber audit as per CSCRF after the above-mentioned timelines. Cyber audit reports along with other required documents shall be submitted as per timelines provided in the CSCRF. 19. The reporting of compliance with respect to CSCRF shall be done to the authority as per the existing mechanism of reporting for cybersecurity audit. 20. The detailed framework is enclosed at Annexure-1 of this circular. 21. This circular is being issued in exercise of powers conferred under Section 11 (1) of the Securities and Exchange of India Act, 1992 , to protect the interests of investors in securities and to promote the development of, and to regulate the securities market. 22. The circular is i .....

X X   X X   Extracts   X X   X X

→ Full Text of the Document

X X   X X   Extracts   X X   X X

 

 

 

 

Quick Updates:Latest Updates

What's New:
    Latest Case Laws
What's New:
    Latest Notifications
What's New:
    Latest Circulars
F: Stock damaged in recent floods
F: GST on Solar Plant
A: PENALTY ON DIRECTORS CONTRAVENING EXPORT REGULATIONS UNDER FOREIGN EXC...
A: Difference between “License” and “Royalty”
A: Penalty proceedings under Section 130 of the CGST Act cannot be initia...
N: Inland Container Depots for loading and unloading of goods - Seeks to ...
C: Guidelines to Stock Exchanges, Clearing Corporations and Depositories
T: Supreme Court Upholds Validity of Re-Assessment Notices Issued During ...
F: Transfer of ITC without filing ITC-02
F: assessment order
F: INTERMEDIARY SERVICES OR EXPORT SERVICES
H: Revision: Hospital receipts verified, partial refunds & fees paid subs...
F: ITC Issue in case of Acqusition of Company in Insolvency
H: Goods matched documents like e-way bill and invoices; detention order ...
H: Goods Inspection Matches E-Way Bill, Lack of Tax Evasion Intent Quashe...
H: Income tax reassessment validity: AO initiated proceedings u/s 147 ins...
H: Reassessment Rules Interpretation: Taxpayer Wins Over Accommodation En...
H: Sale-purchase loss disallowed unreasonably by tax officer, commercial ...
H: Building sale value can't determine depreciation; actual consideration...
H: Loan to equity conversion attracts income tax on excess share premium ...
H: Property purchase: Joint owners pay via banking channels before regist...
H: Tax exemption limit for leave encashment: Local authorities' employees...
H: Tax assessments beyond 6-year limit quashed, satisfaction note lacked ...
H: Cash found in lockers linked to temple trust and educational foundatio...
H: Microphone Tech Classification: Functionality Over Technology.
H: Exemption from Social Welfare Surcharge on duty-free imports via scrips.
H: Claim for performance pay not an operational debt under IBC; Multiple ...
A: Director Identification Number
A: No GST is applicable for the services provided by the Director under p...
A: Income Tax Act Revamp (Comprehensive Review): Status and Suggestion on...