Professional Documents
Culture Documents
CS Audit
CS Audit
CSITE Cell has identified 28 RRBs out of 43 based on their higher digital
exposure, implementation of Cyber Security Controls, high financials
(total loans and advances) and Cyber security incidents identified in the
past. These RRBs were advised to conduct cyber security audit by certified
external auditor having rich experience in conducting technology audits or
through CERT-In empaneled auditors in June 2022. The compliance
status is as follows:
4 RRBs have shared reports from CERT-In empaneled auditor and 1 RRB
by other auditor. 23 RRBs are yet to share the reports and CSITE Cell has
continuously followed up with the banks and ROs for submission of the
NB-DOS-CSITE-CSPOL-E-2023-24-000855
2
report wide email dated 28 July, 04 Oct, 25 Nov 2022 and IOM dated 31
Oct, and 16 Feb 2023.
4. Recommendation:
NB-DOS-CSITE-CSPOL-E-2023-24-000855
3
Ad observed by CERT-In, we may advise all the RRBs to undertake cyber security audit
by CERT-In empaneled auditors latest by 31 Dec 2023 (time given by CERT-In is 6
months, however, we have restricted the time limit to 31 Dec 2023 so that we can comply
to CERT-In time line even if there is some delay on the part of some of the RRBs)
Draft letter to all RRBs with endorsement to ROs has been revised and put up for
approval. Hindi translation will be done after the letter is approved.
Designation: DGM
We may advise all the RRBs as per the draft letter attached. Endorsement of the letter
may be sent to RO for follow up action with RRBs for conduct of cyber security audit by
CERT-empaneled Auditors and for submission of reports as per Annexure I. draft letter
for approval please.
Name of the Officer: Shri Prabhat Keshava
Designation: GM
Date: 18/08/2023 14:48:51
As proposed.
Name of the Officer: Sudhir K Roy
NB-DOS-CSITE-CSPOL-E-2023-24-000855
4
Designation: CGM
Date: 22/08/2023 14:18:00
NB-DOS-CSITE-CSPOL-E-2023-24-000855