36th CISO Deep Dive Training Programme

36th CISO Deep-Dive Training Programme

The National e-Governance Division (NeGD) is currently conducting its 36^th edition of the CISO Deep-Dive training programme from May 8 to 12, 2023. The training programme, under the Ministry of Electronics and Information Technology (MeitY), aimed to build the capacities of CISOs and frontline IT officials in combating cyber-attacks.

Participants

The five-day training programme had 24 participants, including CISOs, technical wings of police and security forces, CTOs, and members of technical/PMU teams from Central Line Ministries and States/UTs.

Aim of the Programme

The purpose of the CISO Deep-Dive training programme is to provide CISOs with a comprehensive understanding of cyber-attacks, the latest safeguarding technologies, and how to communicate the benefits of a strong e-infrastructure to organizations and the public. Additionally, the training seeks to give a comprehensive view of legal provisions and help build concrete crisis management plans for cyber-attacks.

Coverage of Topics

During the training programme, various topics related to cybersecurity were covered, including Governance Risk and Compliance, the Landscape of Cyber Security Products in India, Security for Endpoints and Digital Workplaces, Network Security, Security for Applications and Data, Incident Response and CCMP, Mobile Security, Cryptography, Cyber Security Testing and Audit, Cyber Security related Provisions of IT Act and ISMS Standards such as ISO 27001, as well as Security Logging and Operation and Monitoring of Security Operation Centers.

CISO Training

The CISO training programme was launched in 2018 under the Public Private Partnership (PPP) model. NeGD has organized 36 sessions of CISO deep-dive training programs for more than 1,419 CISOs and IT officials since that time.

Agencies and Companies Included in the Training Programme

The Cyber Surakshit Bharat initiative of MeitY has made this training programme available for designated CISOs from Central and State/UT Governments, subordinate agencies/PSUs, technical wings of police and security forces, CTOs, and members of technical/PMU teams, including public sector banks and insurance companies. The programme is intended to strengthen the capacities of CISOs and frontline IT officials across all government departments to combat cyber-attacks.

Why in News?

The National e-Governance Division (NeGD), under its Capacity Building scheme, organised 36^th   CISO Deep-Dive training Programme with 24 participants from Central Line Ministries and States/UTs at Indian Institute of Public Administration, New Delhi.

• The training program is a part of a series of workshops organised under the Cyber Surakshit Bharat Initiative.

What is Cyber Surakshit Bharat Initiative?

• The Cyber Surakshit Bharat Initiative was conceptualised with the mission to spread awareness about cyber-crime and build capacities of Chief Information Security Officers (CISOs) and frontline IT officials, across all government departments.
• It was launched by the Ministry of Electronics and Information Technology (MeitY) in 2018 in cooperation with National e-Governance Division (NeGD) and various industry partners in India.

What is CISOs Deep Dive Training?

• About:
  • It is the first-of-its-kind partnership between the Government and industry consortium under Public Private Partnership (PPP) model.
• Objectives:
  • Create awareness on the emerging landscape of cyber threats.
  • Provide in-depth understanding of related solutions.
  • Applicable frameworks, guidelines & policies related to cyber security.
  • Share best practices to learn from success & failures.
  • Provide key inputs to take informed decisions on Cyber Security related issues in their respective functional area.
• Participants:
  • The programme is organised for chief information security officers (CISOs) and frontline IT officials from various ministries and departments, government and semi-government organisations from central and state governments, PSUs, and banks among others.
• Training:
  • NeGD provides logistic support in arranging the training programmes, whereas the industry consortium provides technical support for the training.
  • The training partners from the industry are Microsoft, IBM, Intel, Palo Alto Networks, E&Y, and Dell-EMC, NIC, CERT- In, and CDAC are knowledge partners from the Government side.

What are the Other Initiatives Related to Enhancing Cyber Security?

• Global:
  • Budapest Convention on Cybercrime
  • Internet Governance Forum (IGF)
• India-Specific:
  • National Critical Information Infrastructure Protection Centre (NCIIPC)
  • National Cyber Security Strategy 2020
  • Indian Cyber Crime Coordination Centre (I4C)
  • National Cyber Crime Reporting Portal
  • Computer Emergency Response Team – India (CERT-In)
  • Digital Personal Data Protection Bill 2022
  • Defence Cyber Agency (DCyA)
  • Digital India Bill, 2023
  • Cyber Swachhta Kendra:In 2017, this platform was introduced for internet users to clean their computers and devices by wiping out viruses and malware.