Article

CERT-IN’s directive for reporting cyber incidents

The rapid pace of India’s digitalisation poses new security risks, as developments in emerging technologies is making an impact in various sectors. The multilayered digital ecosystem comprising infrastructure, technologies, applications, and devices is complex, and cybersecurity incidents are evolving at a breakneck pace.

Given this background, the Indian Computer Emergency Response Team (CERT-IN) issued a directive on 28 April 2022 mandating that all cybersecurity incidents need to be reported to CERT-IN within six hours from incident identification/notification. Going forward, this new directive will help organisations strengthen their cybersecurity posture.

Key highlights

The CERT-IN directive is all set to become a law from 27 June 2022. These new directives, released jointly by MeitY and CERT-IN to augment, carry out analysis, and investigate cyber incidents, falls under Sub-section (6) of Section 70B of the Information Technology Act, 2000 and mandates the following:

Connect with us

Rohit Mahajan

President, Risk Advisory, Deloitte India

rmahajan@deloitte.com

Rohit leads the Risk Advisory practice for Deloitte India. He has over 21 years of experience in advising companies across jurisdictions in India and globally (US, Europe and Asia Pacific). Rohit’s ca... More

Gaurav Shukla

Partner and Leader—Cyber, Risk Advisory

shuklagaurav@deloitte.com

Gaurav is the Partner and Leader for the Cyber Practice at Deloitte India's Risk Advisory. He has over 18 years of proven success in developing, managing and advising global enterprise clients on tech... More

Anand Prakash Tiwari

Partner, Risk Advisory, Deloitte India

anandtiwari@deloitte.com

Anand is a Partner with Deloitte India and has more than 21 years of experience in Cyber Security, Risk Consulting and Technology Integration. He is focused on Cyber Risk and advises strategic clients... More

Aloke Kumar Dani

Partner, Risk Advisory

alokekdani@deloitte.com

Aloke has close to 20 years of experience in the cyber-security domain across India and USA. He has played diverse roles in cyber-security in technical sales/presales, product development, product man... More

Viewing offline content

Audit & Assurance

Consulting

Risk Advisory

Financial Advisory

Tax

Consumer

Energy, Resources & Industrials

Financial Services

Government & Public Services

Life Sciences & Health Care

Technology, Media & Telecommunications

India Careers

Life at Deloitte

Job search

Alumni

Advisory for career aspirants

CERT-IN’s directive for reporting cyber incidents

Key highlights

Connect with us

Rohit Mahajan

President, Risk Advisory, Deloitte India

Gaurav Shukla

Partner and Leader—Cyber, Risk Advisory

Anand Prakash Tiwari

Partner, Risk Advisory, Deloitte India

Aloke Kumar Dani

Partner, Risk Advisory

Recommendations

Link your accounts

Viewing offline content

CERT-IN’s directive for reporting cyber incidents

Key highlights

Connect with us

President, Risk Advisory, Deloitte India

Partner and Leader—Cyber, Risk Advisory

Partner, Risk Advisory, Deloitte India

Partner, Risk Advisory

Recommendations

Link your accounts

You previously joined My Deloitte using the same email. Log in here with your My Deloitte password to link accounts. | | Deloitte users: Log in here one time only with the password you have been using for Dbriefs/My Deloitte.

You've previously logged into My Deloitte with a different account. Link your accounts by re-verifying below, or by logging in with a social media account.

Looks like you've logged in with your email address, and with your social media. Link your accounts by signing in with your email or social account.