Govt Forms Body To Counter Hostile Agencies Network
The government has formed a national committee for information and communications Security (NCICS) to formulate a information security framework to counter communications and cyber networks by hostile agencies.
The government has notified a committee in this regard.
Read More: Pakistan Notifies Rules to Combat Cyber Threats
The security of critical information infrastructures and information systems is of paramount importance for national security. A perpetual threat to our communications and cyber networks by hostile agencies exists aimed at espionage, denial or disruption. In this backdrop there is an urgent requirement to undertake immediate assessment of existing vulnerabilities in our information networks in order to develop a robust, sustainable and impermeable information security framework.
In this context, a National Committee for Information & Communications Security (NCICS) is being constituted headed by secretary MoITT.
The other committee members included DG (Technical) ISI, Chairman PTA, DG NCERT, Additional Secretary ex-Establishment Division, Secretary NTISB, Cabinet Division (Secretary).
The committee will assess and monitor information systems of Government Ministries/Divisions & Organizations in order to identify vulnerabilities, conduct gap assessments, evaluate effectiveness of existing information security processes and recommend measures to mitigate risks to enhance security posture of information systems.
Scope of Work
The committee will carry out analysis of completed cybersecurity & IT audits (by NTISB & NCERT) in order to formulate recommendations/corrective measures aimed at improving the comprehensive national cybersecurity governance framework.
It will carry out development of HR cadre for cybersecurity, implementation of technical controls, and streamlining security aspects in procurements of cyber & IT systems.
Financial planning
It will also undertake gap assessments in critical sectors (Health, Energy, CAA, Transportation etc.) in order to identify vulnerabilities in information systems and recommend cybersecurity measures.
It will formulate a compliance mechanism duly incorporating essential information security controls tied to organizational KPIs to ensure effective monitoring and implementation.
It will establish a Federal CERT (FCERT) under NCERT (inline with CERT Rules 2023) in order to focus on information security aspects of all Government Ministries, Divisions and Organizations. A component of Managed Security Service Providers (MSSP) may also be raised in FCERT.
The committee will also formulate tier-down committees in order to efficiently perform assigned functions, including but not limited to the information Security Working Committee (Headed by DG NCERT).
It will conduct gap assessment, analyze vulnerabilities and formulate recommendations in consultation with other committees for review and decision by National Committee for Information & Communications Security (NCICS).
HR Re-Structuring Committee (Headed by Additional Secretary ex-Establishment Division) will work for optimization of existing manpower in order to create a cybersecurity workforce from within the existing HR.
