Chief Information Security Officers (CISO) Forum
IDRBT formed the Chief Information Security Officers (CISO) Forum in the year 2010 with a view to provide a platform for CISOs of all banks to discuss common security concerns in the Indian Banking and Financial Sector and collaboratively provide solutions. The mission of the CISO Forum is to:
- provide a platform for learning about the latest security technologies
- share day-to-day problems in implementing security in banks
- continuously upgrade the security posture of banks.
Over time, the CISO Forum has emerged as the preferred platform to collaboratively discuss and provide solutions for Information Security concerns in the Indian Banking and Financial Sector, which contributes to enhanced Information Security in Banks. The CISO Forum is an active body for learning and doing in the area of Information Security in Banks and is serving as an effective platform for the CISOs of banks to discuss and resolve information security related issues.
The 46th meeting of the CISO Forum was held at IDRBT on October 28-29, 2024. Dr. N. P. Dhavale and Dr. Dipanjan Roy, Faculty, started off the proceedings, emphasising the importance of adhering to RBI regulatory guidelines and the critical role CISOs play in enhancing cybersecurity within financial institutions.
Shri C. Maheswaran, General Manager, RBI, in his keynote address, provided valuable insights on the challenges and responsibilities of CISOs, highlighting the importance of vendor risk management and IT governance amidst the growing threat landscape driven by unpatched applications and inadequate endpoint security. Shri P. K. Sastry, Ernst and Young, focused attention on the recent global cyberattacks and emerging threats, including the growing issue of “Crime as a Service”, making a case for rigorous log file monitoring and caution against using pirated software.
Thereafter, a panel moderated by Dr. Rajarshi Pal, consisting of Prof. B.M. Mehtre, Shri Rajesh Thapar, CISO, NSE and Shri Ajay Kumar, CISO, Bank of Baroda, explored the benefits and challenges of using open-source tools in banking security. Dr. N.P. Dhavale then spoke on identity-based authentication techniques. Shri Bhaskar Rao, CISO, Bharat Bank and Shri Ramesh Chandra, CISO, SIDBI, reinforced the importance of robust authentication practices. Shri Satyen Kumar Jadeja, IBM, dwelt upon quantum computing and its implications for cybersecurity.
The second day began with Dr. Deepak Kumar, Director, IDRBT, presenting his opening remarks wherein he spoke on IDRBT’s latest initiatives, including the introduction of professional programmes in digital banking technology such as the Post Graduate Diploma in Applied Technology as well as other key projects such as DIWAS (Digital India Web Authentication Services) and IB-CART, both aimed at improving banking security.
Shri G. Narendra Nath, National Security Council, Govt. of India, discussed key government initiatives to strengthen cyber threat resilience in the BFSI sector, emphasizing the importance of implementing cybersecurity frameworks and adopting preventive strategies. Shri William Ebenezer, Ammune, spoke on the growing significance of API security
The forum concluded with Dr. Dipanjan Roy, Faculty, summarising the key takeaways. 36 CISOs from various banks participated.
The CISO Forum, functions under the aegis of the Institute’s Centre for Cyber Security and Data Privacy and is coordinated by Dr. Dipanjan Roy, Faculty, IDRBT.