The imperative of cyber security
The government, industry and public must work together and develop a comprehensive cyber security strategy.
The global response...
Today, governments across the world recognise the challenge of cyber security and understand the need to address the risks and challenges on a priority basis. Many countries such as the United States, Britain, South Korea and Australia are at various stages of reviewing and implementing new approaches to cyber security. Broadly, these strategies focus on establishing cross government programmes to address cyber security objectives such as setting up of a central coordination body; working closely with the public sector, industry, civil liberty groups, the public and international partners; and development and promotion of critical skills.
… and the Indian reality
In India, it is strongly believed that a coherent approach to the cyber security strategy or policy needs to be put in place in which the government and organisations across sectors, the public and international partners have a part to play. The strategy should be developed in such a way that it puts in place a robust structure. Consistent with today's challenges, there is a need to create an ecosystem for cyber security in government with cyber security function, security research and operational facilities.
What needs to be done...
As part of the national cyber security strategy, establishment of a national cyber security monitoring cell that conducts rigorous testing of critical assets and monitors and analyses attack trends on a real time basis would tremendously help the Indian industry. Such early watch and warning systems that provide critical reporting on vulnerabilities would also help the law enforcement agencies to become aware of the latest threats, enabling them to take proactive security measures.
... and it is time to act
With the rapid escalation in the intensity and sophistication of cyber crime and other cyber security threats, it is imperative that our government, industry and public are aware of the severity of cyber security risks, and commit to work together. If the government can contribute to the creation of reliable metrics for cyber security, private operators such as Internet service providers, or ISPs, equipment manufacturers and software designers would be able to use those metrics to establish a competitive advantage. Tax breaks, preferred access to government contracts, and performance-based rewards are other potential measures that can encourage business to do its part in balancing the freedom of the Internet with the safety of its users.
The author is Director of Enterprise Risk Services with Deloitte Touche Tohmatsu India. The views expressed here are personal.
Today, governments across the world recognise the challenge of cyber security and understand the need to address the risks and challenges on a priority basis. Many countries such as the United States, Britain, South Korea and Australia are at various stages of reviewing and implementing new approaches to cyber security. Broadly, these strategies focus on establishing cross government programmes to address cyber security objectives such as setting up of a central coordination body; working closely with the public sector, industry, civil liberty groups, the public and international partners; and development and promotion of critical skills.
… and the Indian reality
In India, it is strongly believed that a coherent approach to the cyber security strategy or policy needs to be put in place in which the government and organisations across sectors, the public and international partners have a part to play. The strategy should be developed in such a way that it puts in place a robust structure. Consistent with today's challenges, there is a need to create an ecosystem for cyber security in government with cyber security function, security research and operational facilities.
What needs to be done...
As part of the national cyber security strategy, establishment of a national cyber security monitoring cell that conducts rigorous testing of critical assets and monitors and analyses attack trends on a real time basis would tremendously help the Indian industry. Such early watch and warning systems that provide critical reporting on vulnerabilities would also help the law enforcement agencies to become aware of the latest threats, enabling them to take proactive security measures.
... and it is time to act
With the rapid escalation in the intensity and sophistication of cyber crime and other cyber security threats, it is imperative that our government, industry and public are aware of the severity of cyber security risks, and commit to work together. If the government can contribute to the creation of reliable metrics for cyber security, private operators such as Internet service providers, or ISPs, equipment manufacturers and software designers would be able to use those metrics to establish a competitive advantage. Tax breaks, preferred access to government contracts, and performance-based rewards are other potential measures that can encourage business to do its part in balancing the freedom of the Internet with the safety of its users.
The author is Director of Enterprise Risk Services with Deloitte Touche Tohmatsu India. The views expressed here are personal.
