News

India Finalises National Cyber Security Policy 2025; Focus on Critical Information Infrastructure (CII).

National | Dated: 22 Nov 2025

The Ministry of Electronics and Information Technology (MeitY) finalized the National Cyber Security Policy (NCSP) 2025 . The new policy shifts the focus from merely incident response to proactive protection, emphasizing the security of Critical Information Infrastructure (CII) across sectors like energy, finance, and defence. Key pillars include establishing a National Cyber Command Centre (NCCC) and implementing mandatory audits for government and private entities handling sensitive data. The policy aims to create a robust and resilient cyberspace for citizens and businesses, aligning with India's goal of achieving a $1 trillion digital economy and enhancing its global cybersecurity posture.

🎯 Key Highlights:

The new policy shifts the focus from incident response to proactive protection.
Key pillars include establishing a National Cyber Command Centre (NCCC).
The policy emphasizes the protection of Critical Information Infrastructure (CII).

💡 Other Important Facts:

The policy is crucial for protecting the upcoming Digital Public Infrastructure (DPI) projects.
It also aims to develop a skilled cybersecurity workforce of 5 lakh professionals.
The NCCC will integrate intelligence from various national agencies for unified response.

📚 Test Your Knowledge:

The National Cyber Security Policy (NCSP) 2025 primarily focuses on protecting which type of infrastructure?

Correct Answer: Critical Information Infrastructure (CII)

🚀 Quick Recap:

About NCSP 2025

(i) Ministry: MeitY (Electronics and Information Technology) (ii) Key Shift: From reactive to proactive security measures.
(iii) Goal: Achieve a $1 trillion digital economy safely by 2030. (iv) Mandatory: Mandatory security audits for all entities handling sensitive data.