National Cyber Security Policy: Notes for UPSC Exam

In this article, you can read about the National Cyber Security Policy, which was first drafted in the wake of reports that the US government was spying on India and there were no technical or legal safeguards against it. Cybersecurity is an important topic in the UPSC exam syllabus.

The National Cyber Security Policy is a policy document drafted by the Department of Electronics and Information Technology (DeitY) in 2013 aimed at protecting the public and private infrastructure from cyber attacks. The guideline also seeks to protect the personal information of internet users, financial and banking information, and sovereign data.

What is the National Cyber Security Policy

National Cyber Security Policy is a policy framework by Department of Electronics and Information Technology (DeitY) It aims at protecting the public and private infrastructure from cyber attacks. The policy also intends to safeguard “information, such as personal information (of web users), financial and banking information and sovereign data”.  Ministry of Communications and Information Technology (India) defines Cyberspace as a complex environment consisting of interactions between people, software services supported by worldwide distribution of information and communication technology.

Need for a cybersecurity policy

  • Before 2013, India did not have a cybersecurity policy. The need for it was felt during the NSA spying issue that surfaced in 2013.
  • Information empowers people and there is a need to create a distinction between information that can run freely between systems and those that need to be secured. This could be personal information, banking and financial details, security information which when passed onto the wrong hands can put the country’s safety in jeopardy.
  • This Policy has been drafted in consultation with all the stakeholders.
  • In order to digitise the economy and promote more digital transactions, the government must be able to generate trust in people in the Information and Communications Technology systems that govern financial transactions.
  • A strong integrated and coherent policy on cybersecurity is also needed to curb the menace of cyber terrorism.

National Cyber Security Policy Vision

To build secure and resilient cyberspace for citizens, businesses and Government.

National Cyber Security Policy – UPSC Notes:- Download PDF Here

National Cyber Security Policy Mission

  • To protect information and information infrastructure in cyberspace.
  • To build capabilities to prevent and respond to cyber threats.
  • To reduce vulnerabilities and minimize damage from cyber incidents through a combination of institutional structures, people, processes, technology and cooperation.

To know how Upgrading India’s cybersecurity architecture will boost national security for India, visit the linked article.

National Cyber Security Policy Objectives

  • Encouraging the adoption of IT in all sectors of the economy by creating adequate trust in IT systems by the creation of a secure cyber ecosystem.
  • Creating an assurance framework for the design of security policies and for the promotion and enabling actions for compliance with global security standards and best practices through conformity assessment.
  • Bolstering the regulatory framework for ensuring a secure cyberspace ecosystem.
  • Enhancing and developing national and sectoral level 24 x 7 mechanisms for obtaining strategic information concerning threats to ICT infrastructure, creating scenarios for response, resolution and crisis management through effective predictive, preventive, protective, response and recovery actions.
  • Operating a 24×7 National Critical Information Infrastructure Protection Centre (NCIIPC) to improve the protection and resilience of the country’s critical infrastructure information.
  • Developing suitable indigenous security technologies to address requirements in this field.
  • Improving the visibility of the ICT (Information and Communication Technology) products/services’ integrity by having testing and validation infrastructure.
  • Creating a workforce of 500,000 professionals skilled in cybersecurity in the next 5 years.
  • Providing businesses with fiscal benefits for adopting standard security practices and processes.
  • Safeguarding of the privacy of citizen’s data and reducing economic losses due to cybercrime or data theft.
  • Enabling effective prevention, investigation and prosecution of cybercrime and enhancement of law enforcement capabilities through legislative intervention.
  • Developing a culture of cybersecurity and privacy.
  • Developing effective public-private partnerships and collaborative engagements by means of technical and operational cooperation.
  • Promoting global cooperation by encouraging shared understanding and leveraging relationships for furthering the cause of security of cyberspace.

Find out how candidates can prepare for Internal Security and Disaster Management for IAS Mains, visit the linked article.

UPSC 2021

FAQ about National Cyber Security Policy

What are the main objectives of the national cybersecurity policy 2013?

The National Cyber Security Policy 2013 aims at secure computing environment, enabling adequate trust and confidence in electronic transactions and guiding stakeholders actions for the protection of cyberspace.

When was the National Cyber Security Protection Act passed?

National Cyber Security Protection Act was passed in 2014. It is a cybersecurity law establishing national cybersecurity centers and methods to protect the critical infrastructure and cybersecurity protection for use in the Department of Homeland Security.

For more articles and UPSC preparation material follow the links given in the table below:

Related Links

Leave a Comment

Your Mobile number and Email id will not be published. Required fields are marked *

*

*