Government structure and architecture of Cyber Security in India

India is a huge diverse country. Cyber Security is a newly included part of Indian Security. Following are the ways India Manages its security.

Basically, structure consists of various ministries and regulatory bodies. Lets move from Most Powerful Ministries.

1. NCSC: National Cyber Security Coordinator leads the Indian Cyber Security. The office reports directly to Prime Minister’s Office.
2. CERT-In: Indian Computer Emergency Response Team. It deals with major computer security incidents in India. CERT-In also empanels auditors to conduct cyber security assessments in India which is compulsory for Government and regulatory reporting. Several Sectoral CertIn are also operationalized. Ex. Power Sector Cert.
3. MHA: Cyber & Information Security Division under Ministry of Home Affairs deals with cyber crimes affecting National Security/Homeland security. National Cyber Crime Portal (www.cybercrime.gov.in) operates under its scheme Indian Cyber Crime Coordination Center (I4C). MHA issues NISPG (National Information Security Policy Guidelines) and coordinates with State Police in Cyber Crime Resolution. Intelligence Bureau (IB) too opeates under MHA.
4. NCIIPC: Agency under NTRO, reporting to PMO deals with critical infrastructure security. Releases guidelines on security requirements of CII and runs a responsible vulnerability program for Nation wide reporting.
5. MeitY: IT Act and Data Protection Bill is created by MeitY. It has rights to issue blocking notice to any content on Internet violating laws of Land.
6. Defense Cyber Agency: Still in nascent stage would be under Ministry of Defense as a cyber security wing in Army, Navy and Airforce.
7. State Police: Each state has their own cyber cell. Some states have huge cyber security capability like MahaCyber, CyberDome etc.

Regulators:

1. RBI: Protects all banks by releasing and enforcing Cyber Security Framework for Banks. Its research wing IDRBT conducts drill. REBIT, owned by RBI has a great team of technical experts working to secure banks.
2. IRDAI: Insurance regulator releases the guidelines for Cyber Security in Insurance companies.
3. SEBI: Regulates cyber security requirement of exchanges, brokers and depository (CDSL, NSDL)
4. NPCI: Regulates UPI infrastructure and releases guidelines that has to be adhered by UPI participants.

PSU Companies and Significant Organizations:

1. Bharat Electronics Limited
2. DRDO: Defence Research and Development Organization carries out signal and cyber security research and training.
3. CDAC: Specialized training institute working as system integrator and cyber security training institute.

Educational Sector

MHA has recognized National Forensic Sciences University (NFSU) and Rashtriya Raksha University (RRU) as Universities of National Importance. Both work under umbrella of MHA with B.Tech and Masters level courses in Cyber Security and Forensics