Sebi issues advisory for regulated entities on cybersecurity practices
时间:2024-06-29 03:42:53 阅读(143)
Amid increasing cybersecurity threats to the securities market, Sebi on Wednesday issued an advisory for stock exchanges, depositories and other regulated entities asking them to define roles and responsibilities of chief information security officer and other senior personnel.
Also, it asked them to clearly specify the reporting and compliance requirements in the security policy.
The REs have been asked to proactively monitor the cyberspace to identify phishing websites and report the same to CSIRT-Fin.
Sebi noted that the majority of the infections are primarily introduced through phishing e-mails, malicious adverts on websites, and third-party apps and programmes.
Accordingly, thoughtfully designed security awareness campaigns that stress the avoidance of clicking on links and attachments in e-mail, can establish an important pillar of defense.
“Given the sophistication and persistence of the threat with a high level of coordination among threat actors, it is important to recognise that many traditional approaches to risk management and governance that worked in the past may not be comprehensive or agile enough to address the rapid changes in the threat environment and the pace of technological change that is redefining public and private enterprise,” Sebi said.
The regulator said that an efficient and effective response to and recovery from a cyber-incident by REs are essential to limit any related financial stability risks.
Also, Sebi said that operating systems and applications should be updated with the latest patches on a regular basis. It further said that security audit or Vulnerability Assessment and Penetration Testing (VAPT) of the application should be conducted at regular basis.
The regulator has asked REs to take measures for data protection and data breach. Sebi has asked REs to implement strong log retention policy along with robust password mechanism. Also, it asked them to deploy web and e-mail filters on the network.
The regulator noted that the interconnectedness and interdependency of the financial entities to carry out their functions, the cyber risk of any given entity is no longer limited to the entity’s owned or controlled systems, networks and assets.
The circular will come into force with immediate effect.
Also Read: Zerodha’s Nikhil Kamath tells when to buy stocks, shares Buffett formula to find the right time
FII and DII trades: Foreign Institutional Investors (FII) have been net buyers of domestic stocks for successive days now. On Wednesday, FIIs pumped in Rs 2,347 crore. Domestic Institutional Investors (DII) have been net sellers, pulling out Rs 510 crore yesterday.
IPO watch: Syrma SGS Technology enters the final day of bidding today. So far the issue, that opened last week, has been subscribed 2.27 times. Retail investors have subscribed their portion 2.66 times while NIIs have bid for their quota 3.58 times and QIB portion has been bid for 0.71 times.
猜你喜欢
- Aether Industries’ Rs 800 crore IPO opens today; should you subscribe- Here’s what analysts say
- Petrol and Diesel Rate Today, 25 Nov- Rates remain steady
- Are NSE guidelines a case of over-regulation for SMEs-
- AI tokens saw the third highest returns- Binance
- Nifty to witness buying above 18000, Bank Nifty may trade range-bound; use this strategy for 19 Jan F&O expiry
- Nifty, Sensex correcting for last four weeks as global cues, profit-booking weigh; broader markets resilient
- Akums launches generic formulation to treat migraine
- No halt to sale of wheat & rice by FCI
- Petrol and Diesel Rate Today, 8 January- Fuel rates unchanged; Check prices in Delhi, Mumbai, other cities