Pakistan Notifies Rules to Combat Cyber Threats
Staff Report
The Ministry of IT & Telecommunication (MoITT) has on Thursday notified the Computer Emergency Response Team (CERT) Rules 2023, which will help counter cyber threats against government data.
In his X message (formerly Twitter) the federal minister for IT and Telecom, Dr. Umar Saif, said adding that Pakistan requires protection of its cyberspace against cyber attacks.
“Today we have taken the first step in establishing a National CERT for Pakistan, our national CERT and subsequent sectoral CERTs will provide the institutional framework and capability to protect Pakistan’s cyberspace, and ensure swift responses in case of cyber attacks.”
Later in a statement, Dr. Umar Saif said that this coordinated approach, he said, will ensure a robust defense against cyber threats.
Under the CERT Rules, both National and Sectoral-level Computer Emergency Response Teams will be established and the teams will be responsible for monitoring and safeguarding Pakistan’s cyberspace around the clock, including holidays.
Under the rules one National CERT, funded by the Ministry of IT, will maintain close coordination with various Sectoral CERT teams, providing timely assistance when needed.
The primary responsibility of National CERT will be to coordinate between different CERTs to respond to threats or attacks on any systems critical infrastructure data or widespread attacks on information systems in Pakistan.
The other CERTs are the Government CERTs responsible for ensuring cyber security and all matters related to the public sector at the federal and provincial levels.
The Government CERT includes the federal as well as the CERTs of provincial governments and will act as a coordinator between the national and all sectoral CERTs.
The Government CERT will regularly report to the National CERT, regarding the information and feedback received from the federal and the provincial CERTs.Cabinet approves National Cyber Security Policy
There will also be a Critical Information Infrastructure (CII) CERT to oversee and coordinate between the National CERT and Sectoral CERTs.
The Sectoral CERTs include government and regulatory authorities, while the local government CERTs will fall under the respective provincial CERTs.
The CERTs will be established as per their composition highlighted in the Rules.