<?xml version="1.0" encoding="UTF-8"?>
<?xml-stylesheet type="text/xsl" href="https://www.taxtmi.com/rss_sitemap/rss_feed_blog.xsl?v=1750492856"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>Modification in Cyber Security and Cyber resilience framework for Stock Brokers / Depository Participants</title>
    <link>https://www.taxtmi.com/circulars?id=65649</link>
    <description>Stock Brokers and Depository Participants must classify and inventory critical assets, including ancillary systems, obtain board-level approval of critical systems, and perform annual VAPT and comprehensive annual cyber audit. VAPT must be done by CERT In empanelled organisations, with the final report submitted to Exchanges/Depositories within one month after Technology Committee approval; vulnerabilities must be remediated promptly and closure compliance submitted within three months. Vulnerability scanning and penetration testing are required before commissioning new critical systems. Entities must submit an MD/CEO/partner/proprietor declaration of compliance and report implementation status to Exchanges/Depositories within ten days; Exchanges/Depositories must amend bylaws and notify members.</description>
    <language>en-us</language>
    <pubDate>Tue, 07 Jun 2022 00:00:00 +0530</pubDate>
    <lastBuildDate>Tue, 07 Jun 2022 18:45:00 +0530</lastBuildDate>
    <generator>TaxTMI RSS Generator</generator>
    <atom:link href="https://www.taxtmi.com/rss_feed_blog?id=681323" rel="self" type="application/rss+xml"/>
    <item>
      <title>Modification in Cyber Security and Cyber resilience framework for Stock Brokers / Depository Participants</title>
      <link>https://www.taxtmi.com/circulars?id=65649</link>
      <description>Stock Brokers and Depository Participants must classify and inventory critical assets, including ancillary systems, obtain board-level approval of critical systems, and perform annual VAPT and comprehensive annual cyber audit. VAPT must be done by CERT In empanelled organisations, with the final report submitted to Exchanges/Depositories within one month after Technology Committee approval; vulnerabilities must be remediated promptly and closure compliance submitted within three months. Vulnerability scanning and penetration testing are required before commissioning new critical systems. Entities must submit an MD/CEO/partner/proprietor declaration of compliance and report implementation status to Exchanges/Depositories within ten days; Exchanges/Depositories must amend bylaws and notify members.</description>
      <category>Circulars</category>
      <law>SEBI</law>
      <pubDate>Tue, 07 Jun 2022 00:00:00 +0530</pubDate>
      <guid isPermaLink="true">https://www.taxtmi.com/circulars?id=65649</guid>
    </item>
  </channel>
</rss>