RAKSHA

CERT-In Directives 2022 — Compliance Advisor

← Hub CERT-In 2022
WHY

CERT-In (Indian Computer Emergency Response Team) has mandated strict cybersecurity reporting under its April 2022 directives. Organizations must report cyber incidents within 6 hours, maintain logs for 180 days, and synchronize system clocks with NTP. Non-compliance can result in penalties and loss of regulatory standing.

WHAT

CERT-In compliance requires incident reporting mechanisms, centralized log management (180-day retention), NTP synchronization, VPN user logging, and virtual asset service provider KYC. Organizations need SIEM/log management, incident response plans, and automated compliance monitoring to meet these requirements consistently.

HOW

We audit your current compliance posture against all CERT-In directives, identify gaps in logging, incident response, and reporting. We implement automated log collection, configure 6-hour incident alerting workflows, and establish compliance dashboards. Typical advisory: ₹5-25 lakh depending on organization size.

Available OEM Vendors (9)

1

Splunk

Security information & event mgmt

2

IBM QRadar

Security intelligence platform

3

Elastic SIEM

Open-source log analytics

4

ServiceNow GRC

Governance & risk mgmt

5

Google Chronicle

AI-powered cloud SIEM & SecOps

6

CrowdStrike LogScale

Petabyte-scale log mgmt (180-day retention)

7

RSA Archer GRC

Enterprise risk & compliance platform

8

LogRhythm SIEM

Self-hosted SIEM with analytics

9

Scrut Automation

GRC automation — continuous compliance monitoring; Bronze OEM (37%)

Vendor-neutral. Customer-first. We recommend what you need — nothing more.

Client Profile

Enhanced Scope: Large organizations with extensive IT infrastructure face higher scrutiny under CERT-In Directives. VPN/VPS/Cloud providers have additional customer data retention obligations (KYC for 5 years).
Compliance Dashboard
Overall Compliance Score 0%
0
Compliant
0
In Progress
0
Not Started
0
Non-Compliant
Critical Domains Loading...
High Priority Domains Loading...
Compliance Requirements — 8 Domains
Solution Mapping Matrix
CERT-In Directives 2022 Requirement → Raksha Domain Advisor Mapping
CERT-In Directives 2022 DomainEDREmailNGFWSIEMZTIAMDLPCloudDevSecBackupGRCNetMDR
A. 6-Hr Reporting
B. 180-Day Logs
C. NTP Sync
D. PoC Designation
E. Info Sharing
F. KYC/Customer
G. Virtual Asset
H. Vuln Mgmt
Implementation Roadmap
1
Assessment
Weeks 1–2
  • Identify all ICT systems in scope
  • Audit current log retention and NTP configuration
  • Assess incident reporting readiness (6-hour capability)
  • Determine if VPN/VPS/Cloud KYC obligations apply
  • Designate Point of Contact for CERT-In
2
Foundation
Weeks 3–6
  • Deploy centralized log management (SIEM)
  • Configure NTP sync to NIC/NPL servers
  • Build incident reporting workflow and templates
  • Register PoC with CERT-In
  • Establish KYC data collection (if applicable)
3
Implementation
Weeks 7–12
  • Configure 180-day log retention across all systems
  • Automate incident detection-to-reporting pipeline
  • Deploy evidence collection and forensic readiness
  • Implement KYC verification and 5-year retention
  • Train all staff on reporting obligations
4
Testing & Validation
Weeks 13–16
  • Conduct incident reporting drill (6-hour test)
  • Verify log completeness across all system categories
  • Test NTP synchronization accuracy
  • Validate KYC data retrieval capability
  • Document evidence of compliance
5
Ongoing Compliance
Ongoing
  • Continuous log monitoring and retention verification
  • Quarterly incident reporting drills
  • Regular NTP sync checks and monitoring
  • CERT-In advisory monitoring and response
  • Annual compliance review and PoC update
Penalty Reference — CERT-In Directives 2022
Non-reporting of cybersecurity incidents within 6 hoursPenalty under IT Act Section 70B + Up to ₹1 Lakh per instance
Failure to maintain 180-day log retentionPenalty under IT Act + Potential imprisonment
Non-compliance with NTP synchronization requirementsRegulatory action under IT Act
Failure to provide information to CERT-In on requestImprisonment up to 1 year + Fine up to ₹1 Lakh
Non-maintenance of KYC records (VPN/VPS/Cloud)Penalty under IT Act + Business restrictions
Raksha Technologies
Cybersecurity Procurement Advisory · www.raksha.co.in