This is my attempt to summarize the policy with salient points. For detailed verbose policy please visit http://deity.gov.in/hindi/sites/upload_files/dithindi/files/ncsp_060411.pdf
2. PREAMBLE
“..This policy, therefore, aims to create a
cyber security framework, which leads to
specific actions and programmes to
enhance the security posture of
country's cyberspace…”
National Cyber Security Policy - 2013 - As I Perceive it
2
3. MAIN SECTIONS
Vision
Mission
Objectives
Strategies
Operationalization
National Cyber Security Policy - 2013 - As I Perceive it
3
4. VISION
Build a secure & resilient
cyberspace
For citizens
Businesses
Government
National Cyber Security Policy - 2013 - As I Perceive it
4
5. MISSION
To protect information &
information infrastructure
Build capability to:
Prevent and
Respond to Cyber threats
National Cyber Security Policy - 2013 - As I Perceive it
5
6. MISSION
Reduce vulnerability
Minimise damage from cyber
incidents through:
Institutional
Structures, People, Process &
Technology
National Cyber Security Policy - 2013 - As I Perceive it
6
7. OBJECTIVES
Create Secure cyber Eco system to
Generate trust in IT and
Enhance its adoption
Create Assurance framework for
Design of policies
Promote compliance to standards
National Cyber Security Policy - 2013 - As I Perceive it
7
8. OBJECTIVES
Strengthen laws and guidelines for
secure cyber ecosystem to enable
effective
Prevention,
Investigation and
Prosecution of cyber crimes
National Cyber Security Policy - 2013 - As I Perceive it
8
9. OBJECTIVES
Create & enhance 24 X 7 National
& Sectorial mechanisms for:
Obtaining strategic info on threat to
ICT infrastructure
Creating scenarios for response
Resolution & crisis management
National Cyber Security Policy - 2013 - As I Perceive it
9
10. OBJECTIVES
Enhance protection & resilience to
National Critical Information
Infrastructure by
24 X 7 protection centre
Mandate security practices related
to:
Design, acquisition, Development &
Operation of information sources
National Cyber Security Policy - 2013 - As I Perceive it
10
11. OBJECTIVES
Develop indigenous security
technologies by:
Frontier & Solution oriented
research
Proof Of Concept
Pilot
Transition
Diffusion
Commercialisation
National Cyber Security Policy - 2013 - As I Perceive it
11
12. OBJECTIVES
Improve visibility of integrity of ICT by
Establishing Testing infrastructure for
security of such products
Create 5,00,000 professionals skilled
in cyber security in next 5 years
Provide Fiscal benefits to businesses
for adoption of security practices
National Cyber Security Policy - 2013 - As I Perceive it
12
13. OBJECTIVES
To enable protection of data to:
Safeguard privacy of data of
citizens
Minimize losses due to cyber
crimes /data theft
National Cyber Security Policy - 2013 - As I Perceive it
13
14. OBJECTIVES
Create a culture of cyber security
& privacy enabling responsible
behavior through effective
communication and promotion
National Cyber Security Policy - 2013 - As I Perceive it
14
15. OBJECTIVES
Develop effective Public-Private
partnerships through
Technical &
Operational collaboration
Enhance Global cooperation by
Promoting sharing
Leveraging relationships
National Cyber Security Policy - 2013 - As I Perceive it
15
16. STRATEGIES
A. Create Secure Cyber ecosystem
B. Create Assurance framework
C. Encourage Open Standards
National Cyber Security Policy - 2013 - As I Perceive it
16
17. STRATEGIES
D. Strengthen Regulatory framework
E. Create mechanisms for:
Early warning of security threats,
Vulnerability mangement &
Threat response
F. Securing e-Governance services
National Cyber Security Policy - 2013 - As I Perceive it
17
18. STRATEGIES
G. Protection & resilience of critical
information infrastructure
H. Promote R & D in Cyber security
I. Reduce supply chain risks
National Cyber Security Policy - 2013 - As I Perceive it
18
19. STRATEGIES
J. Human Resource development
K. Creating Cyber security awareness
L. Developing effective Public-Private
partnerships
National Cyber Security Policy - 2013 - As I Perceive it
19
20. STRATEGIES
M. Information sharing & co-operation
N. Prioritized approach for
implementation
National Cyber Security Policy - 2013 - As I Perceive it
20
21. OPERATIONALIZATION
Detailed Guidelines and
Plans of Action at
National,
Sectorial,
State,
Ministry,
Department and
Enterprise levels
National Cyber Security Policy - 2013 - As I Perceive it
21