- 15-Oct-2025
- public international law
NASSCOM (National Association of Software and Services Companies) is India’s premier trade association for the IT and business process management (BPM) industry. It plays a pivotal role in shaping the country’s cybersecurity landscape by driving awareness, policy advocacy, capacity building, and fostering innovation. Through its subsidiary, the Data Security Council of India (DSCI), NASSCOM spearheads initiatives to strengthen India’s cybersecurity ecosystem, promote best practices, and enable a secure digital economy.
NASSCOM formed the Cybersecurity Task Force with industry experts, government representatives, and academia to create a holistic cybersecurity strategy. The task force’s objectives include enhancing India’s cybersecurity market, facilitating research and innovation, improving policy frameworks, and addressing the cybersecurity skills shortage. The ambitious goal is to increase India’s cybersecurity market share from 1% to 10% globally by 2025, driving economic growth and job creation.
Launched in collaboration with the Indian government, the 10-year roadmap outlines strategic focus areas such as Managed Security Services (MSS), Security and Vulnerability Management (SVM), and Network Security. This roadmap envisions the creation of a $35 billion cybersecurity industry by 2025 and the generation of 1 million new jobs, making India a global leader in cybersecurity innovation and service delivery.
Established under NASSCOM’s aegis, DSCI is a non-profit industry body dedicated to data protection and privacy. It develops standards, certifications, and frameworks that align with international best practices, helping Indian companies comply with global regulations such as GDPR and India’s Personal Data Protection Bill. DSCI also engages in policy advocacy and public awareness campaigns to improve overall cyber hygiene.
NASSCOM supports Centers of Excellence focused on cybersecurity technology development and entrepreneurship. These CoEs collaborate with premier institutes like IITs and research bodies to drive R&D in emerging areas such as AI-based threat detection, blockchain security, and cloud security. They also provide incubation support to cybersecurity startups, fueling innovation and creating a robust domestic cybersecurity product ecosystem.
Recognizing the acute shortage of skilled cybersecurity professionals, NASSCOM partners with academic institutions, training providers, and global cybersecurity firms to design specialized training programs. These programs certify professionals in key roles, ranging from ethical hacking to security operations, enhancing workforce readiness. Initiatives like the Cybersecurity Talent Acceleration Program aim to bridge the skill gap and support India’s digital transformation goals.
NASSCOM, through DSCI, runs awareness campaigns and workshops tailored for small and medium enterprises (SMEs), which are often vulnerable due to limited resources. Programs like CyberShield provide practical training on threat prevention, incident response, and best practices to safeguard digital assets. This empowers SMEs to defend against cyber threats and comply with security regulations.
NASSCOM acts as a bridge between the government, industry, and academia to create a collaborative cybersecurity ecosystem. It facilitates dialogues for policy formulation, promotes information sharing through threat intelligence platforms, and encourages joint initiatives to combat cybercrime. This ecosystem approach ensures coordinated defense strategies against evolving cyber threats.
A mid-sized e-commerce company in India faced a data breach due to weak internal cybersecurity practices. The company joined NASSCOM’s CyberShield program, receiving customized training on cybersecurity frameworks, phishing prevention, and incident response. With the help of DSCI’s certification guidelines, the company revamped its security policies and implemented advanced monitoring tools. This reduced vulnerabilities, strengthened customer trust, and ensured compliance with evolving data protection regulations.
Answer By Law4u Team
Discover clear and detailed answers to common questions about Cyber and Technology Law. Learn about procedures and more in straightforward language.
