The Government of India has conducted a sweeping cybersecurity audit covering nearly 9,800 entities across key sectors like power, energy, and banking, according to a recent statement in the Rajya Sabha by Minister of State for Electronics and IT, Jitin Prasada. The audits, jointly executed by CERT‑In and the National Critical Information Infrastructure Protection Centre (NCIIPC), aim to bolster digital resilience across India’s critical infrastructure.

Under this initiative, over 200 cybersecurity firms were empanelled to perform sector‑specific security assessments. Finance and power sectors now operate dedicated incident response units—CSIRT‑Fin and CSIRT‑Power—to coordinate threat response efforts and reinforce security standards across entities in these domains.

The government emphasised that the audits form part of a broader policy to create “a safe, trusted, and accountable cyberspace for all users.” Minister Prasada noted that these measures are essential for ensuring the uninterrupted and safe operation of vital services in sectors like transport, governance, and public utilities. In addition to audits, CERT‑In has issued guidelines to help stakeholders establish State- and sector-level Crisis Management Plans. So far, 205 CCMP workshops have been conducted to educate government agencies and critical enterprises about threat detection, recovery protocols, and cyber-crisis coordination procedures.

The government has also promoted the development and deployment of indigenous cybersecurity solutions. The Centre for Development of Advanced Computing (C‑DAC) has rolled out tools in areas such as mobile security, forensic analytics, and log monitoring—designed to reduce reliance on foreign technology and enhance homegrown cyber capabilities.

This initiative comes at a time of escalating global cyber threats targeting both digital and physical infrastructures. Indian authorities have flagged multiple incidents in recent months across government portals, banking networks, and utility services, reinforcing the urgency for proactive defence measures. The audit exercise reflects a shift in strategy: from reactive post-incident responses to preventive, continuous monitoring and capability building across sectors.

In summary, nearly 9,800 cybersecurity audits conducted by CERT‑In and NCIIPC across power, energy, and BFSI sectors underscore India’s intensified focus on digital infrastructure security. With 200 certified audit agencies, specialized incident response teams for key domains, locally developed security tools, and widespread crisis preparedness training, the government is taking concrete steps toward safeguarding the nation’s cyber resilience.