CERT-In extends Cyber Security Directions enforcement deadline for MSMEs till Sept 25

New Delhi, June 28 (KNN) The Indian Computer Emergency Response Team (CERT-In) has announced the extension of timelines for implementation of Cyber Security Directions for MSMEs till September 25, 2022.

The decision aims to enable MSMEs build capacity required for the implementation of the Cyber Security Directions.

It has also provided Data Centres, Virtual Private Server (VPS) providers, Cloud Service providers and Virtual Private Network Service (VPN Service) providers with additional time till September 25, 2022.

The national agency of cyber security had issued directions relating to information security practices on April 28, 2022 to deal with the emerging cyber threats and to augment incident response measures in the country.

It requires service providers to maintain logs of all information and communication technologies (ICT) system for a period of 180 days.

They also have to register and maintain personal information of subscribers for five years or longer and provide this data to CERT-In if demanded in case of a cyber-security incident.

CERT-In can seek information from the entities in specified formats and time frames for responding to cyber incidents.

The Cyber Security Directions also require the entities to designate a Point of Contact (PoC) to interface with CERT-In.

In response to general queries received by CERT-In, a set of FAQs document was also released by Minister of State for Electronics & IT & Skill Development and Entrepreneurship, Rajeev Chandrasekhar on May 18, 2022.

The objective was to enable better understanding of various stakeholders as well as to promote open, safe & trusted and accountable internet in the country.  (KNN Bureau)