Delhi govt issues guidelines for IT infra security
Delhi government issues cybersecurity guidelines for departments, mandating compliance certificates, secure practices, and proactive IT infrastructure protection.
The Delhi government has issued a set of guidelines for all departments to ensure cybersecurity of their Information Technology (IT) infrastructure. The advisory comes after recently, the government had flagged redundant information on department websites and directed them to submit monthly compliance certificates confirming regular updates of their portals.

In the advisory issued on Thursday, the IT department said all departments must ensure adoption of proactive steps to safeguard IT infrastructure from any cyber incident.
“As the safety of IT infrastructure is most important and any breach may lead to bad name to the Delhi government, all departments of GNCTD must ensure to adopt following proactive steps to safeguard IT infrastructure from any cyber incident,” read the advisory.
The advisory further directed departments to nominate an Assistant Chief Information Security Officer (ACISO) as a single point of contact. It also mandated that all websites and applications running in departments must possess a valid security audit certificate.
To ensure uniformity, an online mechanism has been made mandatory for submitting the certificates. Designated nodal officers have been directed to log in to the prescribed portal and upload a digitally signed certificate by the concerned head of department. The basic details will be auto-populated, officials said, to reduce errors and delays.
Notably, the mechanism to upload the compliance certificates was operational earlier, due to laxity in filling out forms, it has now been made mandatory.
In a circular issued by the IT department last week, the government noted that several departments had failed to submit compliance certificates within stipulated timelines. All departments will now have to submit the compliance information by the 15th of every month.
Officials have been asked not to open or download any anonymous links, websites or attachments on office machines and to use only NIC email for official communication, avoiding third-party communication channels for official purposes. The use of pirated software in office machines has been strictly prohibited and departments have been instructed to use antivirus software.
Any cyber incident must be reported immediately on 1930 helpline number, incident@cert-in.org.in, or incident@nic-cert.nic.in, the advisory read.
The guidelines further stress proper shutdown of machines while leaving office, enforcement of strong passwords and multifactor authentication (MFA) for accessing sensitive data and information, and not sharing passwords with anyone.
Departments have also been directed to manage inventory of IT infrastructure installed, schedule and take backup of data as per policy, and keep all devices, operating systems, and software updated.
ABOUT THE AUTHORSaloni BhatiaSaloni Bhatia is a journalist with over 15 years of experience in reporting and storytelling, with a strong focus on the Delhi government and political developments in the Capital. Over the years, she has closely tracked policy decisions, governance issues, and political shifts. She started off as an entertainment journalist but then moved to covering beats like crime and education. Her experience on the crime beat helped her develop an eye for detail and accuracy, while education reporting allowed her to explore policy impact on students, teachers and institutions. Outside the newsroom, she enjoys reading both fiction and non-fiction. She also has a keen interest in watching Bollywood films.Read More
Stay updated with all top Cities including, Bengaluru, Delhi, Mumbai and more across India. Stay informed on the latest happenings in World News along with Delhi Election 2025 and Delhi Election Result 2025 Live, New Delhi Election Result Live, Kalkaji Election Result Live at Hindustan Times.

E-Paper


