Technology

What Role Does CERT-In Play in India’s Cybersecurity?

Imagine waking up to find your bank account hacked, your personal data stolen, or a government website down due to a cyberattack. In India, with over 950 million internet users in 2025, these scenarios are a growing threat, costing the economy billions annually. Enter CERT-In, the Indian Computer Emergency Response Team, a vital guardian of India’s digital landscape. Established under the Ministry of Electronics and Information Technology (MeitY), CERT-In is like the nation’s cyber firefighter, responding to digital threats, from ransomware to data breaches, 24/7. But it’s more than just a response team—it’s a cornerstone of India’s cybersecurity, guiding policies, protecting critical infrastructure, and educating citizens. In this blog, we’ll explore CERT-In’s role, how it works, and why it’s essential for keeping India’s cyberspace safe. Whether you’re a curious netizen or a business owner, this guide will break it down simply, showing how CERT-In protects us all in the digital age.

Ishwar Singh SisodiyaIshwar Singh Sisodiya
Sep 10, 2025 - 12:43
Sep 10, 2025 - 15:21
 9
What Role Does CERT-In Play in India’s Cybersecurity?

Table of Contents

What Is CERT-In?

The Indian Computer Emergency Response Team (CERT-In) is India’s national agency for cybersecurity, operating under MeitY. Established in 2004 under the Information Technology Act, 2000, CERT-In is tasked with responding to cyber incidents, protecting critical infrastructure, and enhancing India’s digital security. It’s like a 24/7 control room that monitors threats, issues alerts, and coordinates responses to cyberattacks like hacking, ransomware, or phishing.

CERT-In serves as the go-to point for reporting cyber incidents, offering technical support to businesses, government, and citizens. It also sets cybersecurity standards, conducts audits, and promotes awareness. With a team of experts, CERT-In ensures India’s digital ecosystem—spanning banks, power grids, and e-governance stays secure in a world where cyber threats evolve daily.

History and Evolution of CERT-In

CERT-In was born in 2004, a time when India’s internet users were just 20 million, but cyber threats like hacking were rising. The IT Act, 2000, gave it legal backing under Section 70B, tasking it with handling cyber incidents. Initially, CERT-In focused on basic threats like viruses and website defacements, but as India’s digital footprint grew, so did its role.

The 2008 Mumbai attacks highlighted cyber terrorism risks, leading to the 2008 IT Act amendment, which expanded CERT-In’s powers to investigate and coordinate. The National Cyber Security Policy (NCSP) 2013 further strengthened it, emphasizing critical infrastructure protection. By 2025, CERT-In handles advanced threats like AI-driven attacks and ransomware, issuing 1,750 advisories in 2024 alone. Its evolution mirrors India’s shift from a nascent digital nation to a global IT hub.

Key Functions of CERT-In

CERT-In has a wide-ranging role in India’s cybersecurity. Here’s a table summarizing its core functions:

Function Description
Incident Response Handles cyber incidents like data breaches or malware attacks.
Threat Intelligence Issues alerts on vulnerabilities and emerging threats.
Audits and Standards Sets cybersecurity guidelines for organizations.
Training and Awareness Educates citizens and trains professionals on cyber safety.
International Cooperation Works with global CERTs to tackle cross-border threats.

These functions make CERT-In a versatile player, addressing both immediate threats and long-term security needs.

Incident Response and Threat Management

When a cyberattack strikes say, a ransomware locking a hospital’s systems CERT-In springs into action. It operates a 24/7 helpdesk where organizations and individuals report incidents via email ([email protected]) or phone. In 2024, CERT-In handled 1.97 million incidents, from malware to phishing.

CERT-In analyzes attacks, provides mitigation steps (like patching software), and coordinates with affected parties. It also issues advisories 1,750 in 2024 warning about vulnerabilities, like a flaw in a popular app. For example, during a 2023 banking malware attack, CERT-In’s quick alerts helped banks secure systems, saving millions. Its proactive threat intelligence, shared via newsletters, keeps India ahead of cybercriminals.

Protecting Critical Infrastructure

Critical infrastructure—like power grids, railways, or banks is a prime target for hackers. CERT-In protects these under the NCSP 2013, working with the National Critical Information Infrastructure Protection Centre (NCIIPC). It conducts audits, sets security standards, and responds to attacks on sectors like energy or defense.

For instance, in 2024, CERT-In thwarted a ransomware attack on a power grid by issuing real-time mitigation guidelines. It also runs sectoral CERTs (e.g., CERT-Fin for finance) to focus on industry-specific threats. This ensures India’s essential services stay online, safeguarding the economy and national security.

Collaboration with Other Agencies

CERT-In doesn’t work alone it’s a team player. It collaborates with:

  • I4C: Shares data with the Indian Cyber Crime Coordination Centre for fraud investigations.
  • NCIIPC: Protects critical infrastructure like telecoms.
  • State Agencies: Supports state cyber cells with technical expertise.
  • Private Sector: Partners with companies like Google for threat intelligence.
  • Global CERTs: Works with US-CERT and others via MoUs for cross-border threats.

In 2024, CERT-In’s collaboration with I4C’s Samanvay Platform helped block 7 lakh SIMs used in frauds. This teamwork amplifies its impact across India’s cybersecurity ecosystem.

CERT-In’s Role in Policy and Regulation

CERT-In shapes India’s cybersecurity laws and policies. Under the IT Act, it’s empowered to issue directives, like mandatory breach reporting within 6 hours (introduced in 2022). It also advises on policies like the National Cybersecurity Reference Framework 2025, ensuring alignment with global standards.

CERT-In conducts compliance audits, ensuring organizations follow the Digital Personal Data Protection Act (DPDPA) 2023. Its guidelines on VPNs and cloud security help businesses stay secure. By setting standards, CERT-In ensures India’s digital growth is safe and sustainable.

Impact and Achievements

CERT-In’s impact is significant:

  • Handled 1.97 million cyber incidents in 2024, up 33% from 2023.
  • Issued 1,750 advisories, mitigating threats like ransomware.
  • Trained 3,000 professionals in 2024 via Cyber Surakshit Bharat.
  • Thwarted a 2024 attack on a railway network, saving critical operations.

Its collaboration with Google’s DigiKavach in 2023 protected millions from phishing scams. These achievements show CERT-In’s role in keeping India’s digital backbone secure.

Challenges Faced by CERT-In

Despite its successes, CERT-In faces hurdles:

  • Resource Constraints: Limited staff and funding for 1.97 million incidents.
  • Rural Gaps: Low awareness and access in rural areas.
  • Emerging Threats: AI-driven attacks and deepfakes require new tools.
  • Privacy Concerns: Strict directives like 6-hour reporting raise compliance issues.

Addressing these needs more investment, training, and public education to keep CERT-In effective.

Future Role of CERT-In

As India’s digital landscape evolves, CERT-In’s role will grow:

  • AI and Quantum Security: Developing defenses for AI and quantum computing threats.
  • Rural Outreach: Expanding awareness via local campaigns.
  • Global Leadership: Strengthening ties with global CERTs for cross-border defense.
  • Training: Scaling Cyber Surakshit Bharat to train 10,000 professionals by 2030.

Aligned with Digital India 2.0, CERT-In aims to make India a cybersecurity powerhouse, ensuring a safe digital future.

Conclusion

CERT-In is India’s cybersecurity backbone, protecting 950 million internet users from digital threats. From responding to 1.97 million incidents in 2024 to setting policies and training professionals, it plays a multifaceted role in keeping India’s cyberspace secure. Its collaboration with agencies like I4C and global partners ensures a robust defense, while successes like thwarting ransomware attacks highlight its impact. Challenges like resource limits and emerging threats persist, but CERT-In’s proactive approach offers hope. As India’s digital economy grows, CERT-In is your digital guardian—stay informed, report incidents, and help build a safer online nation.

Frequently Asked Questions (FAQs)

What is CERT-In?

India’s national cybersecurity agency under MeitY, handling cyber incidents and policies.

When was CERT-In established?

In 2004, under the IT Act, 2000.

What does CERT-In do?

Responds to cyber incidents, issues alerts, sets standards, and trains professionals.

How do I report a cyber incident?

Email [email protected] or call CERT-In’s 24/7 helpdesk.

What types of threats does CERT-In handle?

Hacking, ransomware, phishing, and malware attacks.

Does CERT-In protect critical infrastructure?

Yes, it secures banks, power grids, and railways with NCIIPC.

How many incidents did CERT-In handle in 2024?

1.97 million, a 33% increase from 2023.

What are CERT-In advisories?

Alerts on vulnerabilities, like software flaws, issued 1,750 times in 2024.

Does CERT-In work with other agencies?

Yes, with I4C, NCIIPC, state police, and global CERTs.

What is Cyber Surakshit Bharat?

A CERT-In program training professionals and raising awareness.

Can citizens report to CERT-In?

Yes, via email or phone, though I4C’s NCRP is preferred for frauds.

How does CERT-In shape policy?

It issues directives like 6-hour breach reporting and advises on laws.

What is the IT Act’s role?

It empowers CERT-In to handle incidents and set standards.

Does CERT-In tackle AI threats?

Yes, it’s developing defenses for AI-driven attacks like deepfakes.

How does CERT-In support businesses?

Through audits, guidelines, and incident response support.

What challenges does CERT-In face?

Resource limits, rural gaps, and emerging threats.

Does CERT-In collaborate globally?

Yes, with CERTs like US-CERT via MoUs.

How does CERT-In raise awareness?

Via campaigns, workshops, and newsletters like Cyber Swachhta.

What’s CERT-In’s future role?

Tackling AI, quantum threats, and expanding training by 2030.

Where can I learn more about CERT-In?

Visit www.cert-in.org.in or follow its advisories.

Tags:

Previous Article

What Is the Citizen Financial Cyber Fraud Reporting and Management System (CFCFR...

Next Article

How Does the National Cyber Coordination Centre (NCCC) Detect and Respond to Thr...

What's Your Reaction?

like

dislike

love

funny

angry

sad

wow

Ishwar Singh Sisodiya
Ishwar Singh Sisodiya I am focused on making a positive difference and helping businesses and people grow. I believe in the power of hard work, continuous learning, and finding creative ways to solve problems. My goal is to lead projects that help others succeed, while always staying up to date with the latest trends. I am dedicated to creating opportunities for growth and helping others reach their full potential.

Related Posts

How Has Generative AI Affected Security in Cyber Security

How Has Generative AI Affected Security in Cyber Security

Anjali Sep 10, 2024  57

Step-by-Step Guide to Performing Reconnaissance on a Target Network

Step-by-Step Guide to Performing Reconnaissance on a Ta...

Ishwar Singh Sisodiya Sep 9, 2025  26

Best Hands-On Labs to Practice for the CKA Certification

Best Hands-On Labs to Practice for the CKA Certification

Ishwar Singh Sisodiya Sep 13, 2025  26