India’s financial sector’s cybersecurity processes are subject to a myriad of regulators, regulations, and requirements. On September 6, 2023, Aadya Misra and Ankita Hariramani conducted a session where they delved into the Indian cybersecurity laws that affect entities in the financial services sector, and shared tips and practical advice for the management of cybersecurity incidents throughout their lifecycle. The session covered preparation strategies, breach notification obligations under Indian laws, and recommendations for mitigation and recovery.
The key points of discussion included:
- an overview of Indian cybersecurity laws;
- a review of key cybersecurity considerations for entities in the FSR space, such as tech preparedness, audits and certifications, internal policies and procedures, downstreaming of obligations, and training and awareness campaigns;
- the cybersecurity incident response lifecycle from detection and discovery, containment, response, to recovery; and
- practical guidance on incident management based on our experiences.
If you were unable to attend this session, check out the discussion on the link below: