logotype

SEBI Cyber Security and Cyber Resilience Framework

The SEBI Cyber Security and Cyber Resilience Framework (CSCRF) is a set of guidelines issued by the Securities and Exchange Board of India (SEBI) to help regulated entities (REs) protect their information systems and data from cyber threats. The CSCRF covers a wide range of topics.

RNR, as a CERT-In Empaneled Security Auditor, is licensed to assist you in understanding, managing, and complying with SEBI Cyber Security and Cyber Resilience Guidelines that are provided on a regular basis.

SEBI issued guidelines in 2018 and 2019 for a variety of businesses that are within its authority, including Stockbrokers, Depository Participants, Mutual Funds, Asset Management Companies (AMCs), Stock Exchanges, Clearing Corporations, and Depositories.

As an approved security auditor listed by CERT-IN, RNR has the authority to assist you in comprehending, managing, and complying with SEBI’s cybersecurity and cyber resilience guidelines that are regularly published. SEBI has issued guidelines in 2018 and 2019 for various organizations falling under its jurisdiction, including stock brokers, depository participants, mutual funds, asset management companies (AMCs), stock exchanges, clearing corporations, and depositories.

Download Our Whitepaper to learn more about the Cyber Security & Cyber Resilience Framework released for each segment and how RNR can help you comply with SEBI’s mandates.

What we do

RNR provides a comprehensive SEBI CSCRF (SEBI – Cyber Security & Cyber Resilience Framework) that helps organizations improve their cyber security posture and reduce their risk of being attacked. There are step by step procedures that we follow and by using our services, you can improve and understand the CSCRF and implement it effectively.

Contact us to understand more about the Cyber Security & Cyber Resilience Framework, and how RNR may assist you in meeting SEBI’s mandates

What is Application Security?

Effective Security Testing Safeguards your Applications from Cyber Threats & Vulnerabilities

RNR Application Security Testing helps you detect application vulnerabilities, provide full coverage for Web and Mobile application infrastructure and online services, and reduce risks to meet regulatory compliance requirements. Our Application Security Methodology extends beyond scanning software detection to identify and prioritize the most vulnerable aspects of your online application, as well as come up with practical Solutions.

Leave us message

How May We Help You!

      Service Request Form

      Select Service(s) You Want:

      Information & cyber security program strategy & roadmapEnterprise & cyber security risk assessment & managementThird party risk managementVirtual CISO serviceCyber security awareness programPhishing simulation programThreat modelingUser access governance & certificationIncident management and response planISO 27001/22301/27701/9001RBI master directionNHB cyber security guidelinesIRDAI cyber security guidelinesNIST FrameworkSOC1/SOC2Data localization as per RBI circular of storage of payment system dataCIS frameworkInternal audit managementCloud assessment as per CISDesigning cloud security architectureCSPM security monitoringGap assessment as per applicable guidelinesNetwork architecture reviewFirewall rule reviewFirewall configuration reviewSystem hardening checksVulnerability assessment program managementWeb application penetration testingMobile application penetration testingInfrastructure vulnerability assessmentAPI vulnerability assessmentAPI fuzzingRed teaming ExerciseData protection advisoryData flow diagramDigital personal data protection acData protection controls implementationData discovery and classificationDesigning of data protection policyData governance programDigital personal data protection acGap assessmentArticulation of policy and proceduresISO 27001/22301/27701/9001, PCI-DSS, SOC1/SOC2, COBIT, COSO, HIPPA, RBI, IRDAI, NIST, Data Localization, CISGRC tool implementationArticulation of BCP plan and strategyCrisis management planBCP/DR planning and implementationImplementation of BCMS standard (ISO 22301)Conducting actual and tabletop DR drillsFunctional recovery planGRC resource deployment onsite/offsiteSecurity services resource deployment onsite/offsite

      Contact Details:

      Name (required):

      Organization Name (required):

      Email (required):

      Contact No (required):

      Detail about the requirement (optional):