Cyber security: Sebi seeks tight security framework for market infrastructure

Sebi Friday asked market infrastructure institutions to set up a round-the-clock cyber security operation centre manned by dedicated security analysts to identify, respond, recover and thwart cyber attacks. The cyber security operation centre (C-SOC) of market infrastructure institutions (MIIs) — clearing corporations, depositories and exchanges– need to prevent cyber attacks through proactive actions including continuous threat analysis. Appropriate alert mechanisms should be implemented including a comprehensive dashboard, tracking of key security metrics and provide cyber threat scorecards, Sebi said in a circular. In order to detect security incidents in real time, Sebi said, the centre should go for 24X7 monitoring and analysis of relevant logs of MII’s network devices, data traffic, cyber intelligence feeds sourced from reliable vendors, inputs received from other MIIs as also from external agencies such as CERT-In, among others. The cyber intelligence feeds should include cyber news feeds, signature updates, incident reports, threat briefs, and vulnerability alerts. The latest framework comes after Sebi, earlier this week, issued detailed guidelines on cyber security for stock brokers and depository participants. The regulator has directed bourses, clearing corporations and depositories to take necessary steps to put in place appropriate systems and processes for implementation of the framework within six months. According to Sebi, the centre should be headed by MII’s chief information security officer, who will work closely with various departments including network team, cyber security team and IT. Such officer will directly report to the MD and CEO of the MII.