/ciol/media/agency_attachments/c0E28gS06GM3VmrXNw5G.png)
Follow UsNEW DELHI, INDIA: Data Security Council of India (DSCI), today launched its first ever “Best Practices Framework” in New Delhi.
The framework includes a set of best practices in data security and privacy for companies across industry verticals such as IT- BPO, banking and financial services, manufacturing, e-governance, telecom, PSUs, e-commerce, said a press release.
Som Mittal, president, NASSCOM, said “DSCI was created with an objective of ensuring that the Indian information security environment benchmarks with the best across the globe. Data protection has emerged as a major corporate and government concern worldwide”
He added that they are sure that this initiative of DSCI would be welcomed by the industry at large and attain success very soon. It once again reinforces India’s commitment towards data security and strengthens their position as a secure destination for outsourcing.
DSCI considers the Best Practices Approach as a strategic step to enhance adherence to data security and privacy standards.
It believes that a service provider in India should be able to demonstrate compliance with data protection requirements, similar to those of the country where the client is located, and/or where the data is originating, by following best security and privacy practices and standards as per Data Security Framework and Data Privacy framework.
Dr Kamlesh Bajaj, CEO, DSCI said “The best practice framework has been created in extensive consultation with the industry and reviewed by technical experts. These practices will help an organization from any industry achieve not only regulatory compliance but also enable it ensure data privacy.”
He added that through the implementation of these practices, DSCI would work with industry to evolve a Certification Program for security and privacy that would act as a seal of trust for clients.
DSCI Approach includes the latest trends in information security, and also takes into account the tactical approach to enhancing security in addition to the process, people, and technology oriented approach.
This seminar would subsequently be followed by regional workshops which the DSCI plans to conduct in Bangalore, Mumbai, Chennai, and Kolkata, the release added.
Final draft of DSCI certification will be presented in November during Annual Information Security Summit 2009. DSCI will conduct pilot test on a few companies of the 16 best practices and 9 privacy practices. Recommendation based on the outcome of this pilot test will be included in the final draft of the DSCI Best Practices Framework.
Based on this framework, DSCI will make proposal to the government to include these best practices in the new amendment of Information Technology Act 2000.
DSCI Best Certification will be paid certification but the charge has not been fixed yet.