Govt forms Information Security Steering Committee

Govt forms Information Security Steering Committee

Srinagar: The government on Monday constituted UT Level Information Security Steering Committee (ISSC) mandated as a part of the National Information Security Policy (2014) for enforcement of accepted standards of information security management and governance including cyber security.

Headed by Administrative Secretary, information Technology Department, the members of the committee include Chief Executive Officer, Jammu and Kashmir e-Governance Agency Chief Information Security Officer (CISO), Additional Secretary to Government, Information Technology Department, Financial Advisor/CAO IT Department and Representative of National Critical Information Infrastructure Protection (NCIIPC) besides special invitees— Sanjay Gaden, IT Consultant, Head, SeMT, J&K, State Informatics Officer, NIC, J&K and Representative of CERT-In.

The terms of reference for the committee, among others, include approval of all the Information Security Policies of the “Protected System. It is also required to approve “significant changes” in network configuration impacting “Protected System”.

“ Each significant change in application(s) of the “Protected System” shall be approved by Information Security Steering Committee, the order, a copy of which lies GNS reads, adding, “A mechanism shall be established for timely communication of cyber incident(s) related to “Protected System” to Information Security Steering Committee.” A mechanism shall be established to share the results of all information security audits and compliance of “Protected System” to Information Security Steering Committee, the order reads. It is also required to carry assessment for validation of “Protected System” after every two years.

“The Information Security Steering Committee (ISSC) shall meet preferably once in every quarter regarding continuous assessment of the Cyber Security needs of the UT of J&K and shall also be responsible to strengthen the IT Security Committees at the level of Organizations/ Departments to meet the requirement from time to time.” (GNS)

 

Leave a Reply