BSE, NSE, NCDEX and SEBI Security Audit

The cybersecurity audit undertaken by the Securities and Exchange Board of India is an overall assessment of cyber security measures that have been put in place by entities governed by SEBI. This audit is aimed at ensuring that the financial market operators, in order to protect sensitive data, investor information and vital systems against cyber threats, have proper security measures in place.

An intensive examination of the entities’ information systems, networks and applications is part of a cyber security audit procedure that aims at identifying vulnerabilities and weaknesses. The effectiveness of safety checks, e.g., access controls, encryption mechanisms, network security and the response to an incident shall be evaluated by experienced cybersecurity professionals. The verification of compliance with SEBI security guidelines and industry best practice is part of the audit. In addition, the entities’ readiness to handle and respond to a cyber incident is assessed by a SEBI Cyber Security Audit. The audit shall also check the undertakings’ business continuity plans, with a view to restoring operations as rapidly as possible and minimising any potential disruption.