--- title: "Understanding Computer Emergency Response Team (CERT-In) : India’s Cybersecurity Response Framework" date: 2024-11-25 author: "Rahul Sundaram" url: https://www.indialaw.in/blog/civil/cert-in-india-cybersecurity-framework/ --- # Understanding Computer Emergency Response Team (CERT-In) : India’s Cybersecurity Response Framework Posted On - 25 November, 2024 • By - [Rahul Sundaram](https://www.indialaw.in/people/rahul-sundaram/ "Posts by Rahul Sundaram") [![Understanding Computer Emergency Response Team (CERT-In) India's Cybersecurity Response Framework](https://www.indialaw.in/wp-content/uploads/Understanding-Computer-Emergency-Response-Team-CERT-In-Indias-Cybersecurity-Response-Framework.jpg)](https://www.indialaw.in/wp-content/uploads/Understanding-Computer-Emergency-Response-Team-CERT-In-Indias-Cybersecurity-Response-Framework.jpg) ## Introduction The Computer Emergency Response Team (CERT-In) is a vital component of India’s cybersecurity infrastructure, established under the Information Technology (IT) Act, 2000. This article explores the legal provisions, functions, responsibilities, and operational framework of CERT-In, highlighting its role in safeguarding the nation’s digital landscape. ## Legal Provisions Under the IT Act CERT-In was formally established through Section 70B of the IT Act, which empowers the government to designate a team to respond to cybersecurity incidents and protect critical information infrastructure. The following sections of the IT Act are particularly relevant to CERT-In’s operations: ## Definitions and Key Terms The framework governing CERT-In includes several key definitions: **Cybersecurity Incident:** An event that compromises the integrity, confidentiality, or availability of information. **Director General:** The head of CERT-In, responsible for overseeing its operations. **Critical Information Infrastructure:** Systems essential for the functioning of the economy and society, which CERT-In aims to protect. ## Functions and Responsibilities of CERT-In CERT-In is tasked with a broad range of responsibilities aimed at enhancing cybersecurity resilience in India. These include: **1. Incident Response:** Providing timely responses to cybersecurity incidents to mitigate damage. **2. Prediction and Prevention:** Identifying potential threats and vulnerabilities to prevent incidents before they occur. **3. Analysis and Forensics:** Conducting detailed investigations into cybersecurity incidents to understand their nature and impact. **4. Information Security Assurance:** Offering audits and assessments to ensure the security of information systems. **5. Training and Awareness:** Educating stakeholders about cybersecurity best practices and emerging threats. CERT-In (Computer Emergency Response Team, India) plays a crucial role in coordinating with emergency response teams of other countries to enhance global cybersecurity measures. Here’s a breakdown of its functions and responsibilities in this area: ## Role of CERT-In in International Coordination **1. Information Sharing:** CERT-In collaborates with international counterparts to share information regarding emerging threats, vulnerabilities, and malware. This exchange of data helps in identifying global trends in cyber threats and developing strategies to combat them. **2. Collaborative Incident Response:** In the event of significant cyber incidents that cross national borders, CERT-In works with other countries’ CERTs to respond effectively. This includes joint investigations, sharing resources, and implementing coordinated responses to mitigate impacts. **3. Capacity Building:**  CERT-In engages in capacity-building activities, where it shares its expertise and best practices with other nations. This may include training programs, workshops, and collaborative research initiatives aimed at strengthening national and regional cybersecurity frameworks. **4. Participation in International Forums:** CERT-In actively participates in global and regional cybersecurity forums such as the Global Forum on Cyber Expertise (GFCE) and ASEAN Ministerial Conference on Cybersecurity (AMCC). These platforms allow for dialogue, exchange of ideas, and collaborative efforts among various nations. **5. Bilateral and Multilateral Agreements:** CERT-In may engage in bilateral and multilateral agreements with other countries to facilitate cooperation in cybersecurity. These agreements outline the framework for collaboration, including information sharing, joint exercises, and mutual assistance during cybersecurity incidents. **6. Awareness and Training Programs:** Through collaborations, CERT-In also conducts awareness campaigns and training programs, helping other countries develop their capabilities in responding to cybersecurity threats. **7. Incident Reporting and Alerts:**  CERT-In serves as a point of contact for receiving and disseminating information about threats and vulnerabilities from international sources, ensuring that Indian stakeholders remain informed about global cybersecurity issues. ## Stakeholders and Collaboration CERT-In collaborates with various stakeholders to strengthen its cybersecurity efforts, including but not limited to: **Sectoral Computer Emergency Response Teams:** Specialized teams focusing on specific sectors. **Intermediaries:** Entities that facilitate communication and data exchange. **Internet Registries and Domain Registrars:** Organizations that manage domain names and IP addresses. **Industry and Academia:** Collaborating with businesses and educational institutions for research and development in cybersecurity. **Law Enforcement Agencies:** Working together to address cybercrime and enhance security measures. ## Reporting Requirements CERT-In mandates the reporting of specific types of cybersecurity incidents, which include: – Targeted scanning or probing of critical networks. – Unauthorised access of IT System/data -Defacement of website or intrusion into a website and unauthorised change such as inserting malicious code, links to external websites – Compromise of critical systems or unauthorized access to IT systems. – Malicious code incidents and phishing attacks. – Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks. – Identity theft, spoofing, and other cyber threats – Attacks on application such as e-governance, e-commerce etc. – Attacks on critical infrastructure , SCADA System and Wireless networks – Attack on servers such as databases, mail and DNS and network devices such as routers ## Review Committee To ensure effective governance, a Review Committee oversees CERT-In’s operations. This committee includes but is not limited to representatives from various government ministries, such as: – Ministry of Law and Justice – Department of Telecommunications – Ministry of Home Affairs – Group Coordinator for Cyber Law and e-Security The committee meets regularly to assess CERT-In’s performance and provide strategic direction. ## Conclusion The role of CERT-In in coordinating with emergency response teams from other countries is critical to creating a robust international cybersecurity framework. By fostering collaboration, sharing knowledge, and responding to incidents collectively, CERT-In enhances the ability of nations to combat cyber threats effectively. This cooperation not only aids in safeguarding national interests but also contributes to global stability in cyberspace. CERT-In also plays a crucial role in India’s cybersecurity framework, providing essential services to mitigate risks and respond to incidents. Its establishment under the IT Act ensures a structured approach to managing cybersecurity threats, backed by legal provisions that facilitate cooperation among various stakeholders. As cyber threats continue to evolve, CERT-In’s proactive measures and collaborative efforts will be vital in safeguarding India’s digital infrastructure. For more information write to [contact@indialaw.in](mailto:contact@indialaw.in) Disclaimer - This article is intended for general informational purposes and does not constitute legal advice. Readers should seek specific legal counsel in relation to their individual circumstances. [Download PDF](https://www.indialaw.in/blog/civil/cert-in-india-cybersecurity-framework//pdf/) --- # IndiaLaw LLP — Offices & Contact Details --- ## General Contact | | | |---|---| | **Website** | https://www.indialaw.in | | **Primary email** | contact@indialaw.in | | **Primary phone** | +91 836-9995919 | | **Contact form** | https://www.indialaw.in/connect/ | | **Careers (separate channel)** | https://www.indialaw.in/careers/ | --- ## All Offices (9 locations across 8 cities) ### 1. Mumbai — Registered Office & Head Office (Apeejay Chambers) | | | |---|---| | **Address** | Apeejay Chambers, Ground Floor, Wallace Street, Fort, Mumbai – 400 001 | | **Phone** | [022-6924-7400](tel:02269247400) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/mumbai/ | | **Practice focus** | Litigation · Arbitration · Insolvency & Bankruptcy · Corporate · Banking · Real Estate · IP | | **Notes** | The HQ. 5 partners based here. Handles PAN-India litigation, arbitration, corporate, banking, IP and real estate practice. Largest team across all offices. | ### 2. Mumbai — Non-Litigation Office (Excelsior, Fort) | | | |---|---| | **Address** | 4th Floor, New Excelsior Theatre Pvt. Ltd., Amrit Keshav Nayak Marg, Fort, Mumbai – 400 001 | | **Phone** | [022-697-40500](tel:022-697-40500) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/mumbai/ | | **Practice focus** | Non-litigation only — consultations, negotiations, transactional work | | **Notes** | Opened 2024. Litigation and arbitration remain at the Apeejay Chambers head office. | ### 3. Delhi | | | |---|---| | **Address** | Flat No. 1107 & 1108, Prakashdeep Building, Tolstoy Marg, Connaught Place, New Delhi – 110 001 | | **Phone** | (general line: +91 836-9995919) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/delhi/ | | **Practice focus** | Litigation · Arbitration · Insolvency & Bankruptcy · Corporate · Banking · Real Estate | | **Notes** | 3 partners based here. Located near the Supreme Court of India, Delhi High Court and other appellate bodies. | ### 4. Kolkata | | | |---|---| | **Address** | Centre Point Building, Room No. 214, 2nd Floor, Premises No. 21, Hemanta Basu Sarani, Opp. Great Eastern Hotel, P.S. Hare Street, Kolkata – 700 001, West Bengal | | **Phone** | [+91 33 4813 1001](tel:+913348131001) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/kolkata/ | | **Practice focus** | Insolvency & Bankruptcy · Commercial & Civil Litigation · Arbitration · Banking Litigation · Real Estate · Labour & Employment · Consumer | | **Notes** | Advises banks, NBFCs, MSMEs and corporates on transactions and dispute resolution. Works in close coordination with the Mumbai HO. | ### 5. Chennai | | | |---|---| | **Address** | GF-A, 19 Casa Major Road, Egmore, Chennai – 600 008 | | **Phone** | (general line: +91 836-9995919) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/chennai/ | | **Practice focus** | Litigation · Insolvency & Bankruptcy · Real Estate | | **Notes** | Full-fledged office with experienced legal team. Supported by Mumbai HO. | ### 6. Bengaluru (Bangalore) | | | |---|---| | **Address** | INDIALAW LLP, No. 7 Chinnaswamy Mudaliar Road, Shivaji Nagar, Bangalore – 560 051 | | **Phone** | [080-4167-2444](tel:08041672444) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/bengaluru/ | | **Practice focus** | Litigation · Insolvency & Bankruptcy · Real Estate · Family Laws · Labour | | **Notes** | Located near Bangalore High Court. Handles corporate, commercial, banking and matrimonial disputes. | ### 7. Hyderabad | | | |---|---| | **Address** | 403, 4th Floor, Sanatana Ecstasy Building, beside Tanishq Show Room, Himayathnagar, Hyderabad – 500 029, Telangana | | **Phone** | [040-6666-5166](tel:04066665166) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/hyderabad/ | | **Practice focus** | Litigation · Banking · Insolvency & Bankruptcy · Real Estate | | **Notes** | Particularly well known for complex banking matters and real estate transactions. | ### 8. Cochin (Kochi) | | | |---|---| | **Address** | Second Floor, Pulikkal Building, K.K. Padmanabhan Road, Ernakulam North – 682 018, Kerala | | **Phone** | [0484-3583961](tel:04843583961) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/cochin/ | | **Practice focus** | Litigation · Insolvency & Bankruptcy · Real Estate | | **Notes** | Commercial disputes, property litigation, financial-claim arbitrations and real estate transactions. | ### 9. Noida (NCR) | | | |---|---| | **Address** | No. 16 & 17, Silver Offices, 17th Floor, Wave One, Sector 18, Noida – 201 301 | | **Phone** | (general line: +91 836-9995919) | | **Email** | contact@indialaw.in | | **Page** | https://www.indialaw.in/noida/ | | **Practice focus** | Aviation · Insurance · Mergers & Acquisitions · Corporate | | **Office head** | **Mr. Dinesh Gupta** (joined August 2025 to lead and expand the corporate practice) | | **Notes** | Newest office. Sector-focused on highly regulated industries serving NCR-based clients. | --- ## Quick-Dial Phone List | Office | Phone | |---|---| | Mumbai HO (Apeejay) | 022-6924-7400 | | Mumbai Excelsior | 022-697-40500 | | Kolkata | +91 33 4813 1001 | | Bengaluru | 080-4167-2444 | | Hyderabad | 040-6666-5166 | | Cochin | 0484-3583961 | | **General / Marketing line** | **+91 836-9995919** | Delhi, Chennai and Noida route through the general number. --- ## Social Channels - LinkedIn: https://www.linkedin.com/company/indialaw - X / Twitter: https://twitter.com/Indialawmumbai - Facebook: https://www.facebook.com/indialawllp/ - Instagram: https://www.instagram.com/indialawllp ---