CERT-In and Cybersecurity Framework

CERT-In (Computer Emergency Response Team — India):

• Established under Section 70B of IT Act (inserted by 2008 Amendment)
• Nodal agency for responding to cybersecurity incidents
• Empowered to issue directions to service providers, intermediaries, data centres for cybersecurity compliance
• Reports to Ministry of Electronics and Information Technology (MeitY)
• 2022 Directions: All service providers must report cybersecurity incidents to CERT-In within 6 hours; maintain logs for 180 days