The Department of Telecommunication has notified the Telecommunications (Telecom Cyber Security) Rules, 2024, effective immediately. These Rules aim to provide enhanced cyber security measures for telecom networks against illegal activities.

The Rules apply to any person providing telecommunication services, or establishing, operating maintain or expanding telecommunication network including an authorised entity holding an authorisation for providing telecommunication services, or establishing, operating maintain or expanding telecommunication network, or possess radio equipment.

Key Highlights:

1. Government’s Role in Data Collection & Analysis: The Central Government is authorized to collect and analyze telecommunications data for the purpose of strengthening cybersecurity. This data can be shared with relevant authorities, but must be used strictly for cybersecurity purposes, with safeguards in place to prevent unauthorized access.
2. Prohibition of Cybersecurity Breaches: No individual or entity is permitted to compromise telecommunications cybersecurity through fraudulent activities or any illegal actions involving telecom networks, equipment, or services.
3. Telecom Entity Obligations: Telecom entities are required to implement a comprehensive cybersecurity policy, including security measures, risk management strategies, training, best practices, and technologies to enhance cybersecurity. They must also conduct regular security audits, manage and mitigate risks, follow government directives and standards, and promptly report and address any security incidents.
4. Digital Reporting Mechanisms: The Central Government may establish digital or other mechanisms to identify and enable individuals and stakeholders to report any actions that threaten telecommunications cybersecurity.
5. Appointment of Chief Telecommunication Security Officer (CTSO): Telecom entity must appoint a Chief Telecommunication Security Officer (CTSO), who will be responsible for coordinating with the Central Government to ensure compliance with these rules.
6. Digital Implementation of Rules: The Central Government may define digital methods for the effective implementation and enforcement of these regulations.

Source: Telecom Regulatory Authority of India

Share this: