Cyber Security Policy
Cyber Security Policy
The word cyber can be called as virtual reality. Cyber security is the body of technologies, processes and practices designed to protect networks, computers, programs and data from attack, damage or unauthorized access. Elements of cyber security include Application security, Information security, Network security, Disaster recovery / business continuity planning, Operational security, End-user education. Cyber Security Policy is a formal set of rules by which those people who are given access to company technology and information assets must abide. Cyber Security Policy is a frame work by department of Electronics and Information Technology, which aims at protecting public and private infrastructure from cyber attacks. The policy also intends to safeguard “information, such as personal information (of web users), financial and banking information and sovereign data. as such the policy also talks about the appointment of chief Information Security Officer responsible for cyber security efforts and initiatives. This officer should be a member of senior management
In India till 2013 there was no cyber security policy which specifically provided security policies for cyber space. In 2013 however cyber security policy was formulated by the Indian Government. The security policy provides for fiscal benefits to businesses for adoption of standard security practices and processes. Its objective is to enable protection of information while in process, handling, storage & transit so as to safeguard privacy of citizen’s data and for reducing economic losses due to cyber crime or data theft. However, it is claimed that certain areas need to be addressed which this policy doesn’t talk about. They are tackling the risks arising due to increased use of social networking sites by criminals and anti-national elements, incorporation of cyber crime tracking, cyber forensic capacity building and creation of a platform for sharing and analysis of information between public and private sectors on continuous basis. Also it fails to outline specific strategy for protection of privacy of citizen data. Thus we can say that even if the policy provides for cyber security it has failed to makes provision for certain other aspects of cyber security.
 Whatls, Cyber Security, available at http://whatis.techtarget.com/definition/cybersecurity, (last modified on 27 March, 2018)