MAHRASHTRA STATE ELECTRICITY TRANSMISSION CO. LTD.

DOCKET SHEET

Subject :- Streamlining of various IT works at zonal locations

Section :- Information Technology

File No:-

Date:-

DATE TO WHOM SENT REMARKS

Director (Operations)

Director (Projects)

Director (Human Resources)

Hon’ble Chairman and Managing

Director

Page 1 of 5
 Streamlining of IT works at zonal locations
________________________________________________________________________________________________________________________

OFFICE NOTE MSETCL/CO/CGM/IT/

Date:
Subject: Streamlining of various IT works at zonal locations
Reference: i. O.O. 300, MSETCL/HR-TE/Trf.-IT/13003 Dtd.14.12.2018
ii. Letter to All Zones MSETCL/CO/CGM/IT/107 Dtd. 25.05.2023
iii. Audit report of M/s PGCIL for review of O&M practices in MSETCL
A. Preamble
- The posts of System Analyst and Programmer sanctioned for the Zonal offices
were diverted on the establishment of Corporate Office, Mumbai in Dec’2018.
[Ref (1)] on the instructions of the Hon. CMD in view of effective utilization of
these resources considering the quantum of the work at CO.
- Meanwhile, in the world of digital era, MSETCL started some path breaking
technological initiatives in transmission business in IT, automation and
communication domains with projects like MTAMC, AMR, SAP HEC migration,
Automation of substations with IED/ digitized equipment, OPGW/ VSAT
communication etc.
- With these initiatives there is high necessity to make the IT infrastructure of all
offices/ substation under MSETCL highly ‘Cyber Secured’ in terms of Data &
Network security and Grid security.
- Accordingly, for strengthening of IT infrastructure with provisioning of IT
related essential services and Cyber Security tools for offices across MSETCL
zones had issued by CGM (IT). [Ref(2)]
- The Power Grid Corporation of India Limited (PGCIL) conducted the O&M audit
at 21 Extra High Voltage (EHV) substations. Their final report highlighted the
importance of "Developing IT Infrastructure" as a key point [Ref (3)].
B. Need
1. Over the past few years it has been observed that certain crucial IT
enhancements (e.g. IT monitoring and analysis services, IT infrastructure
upgradation etc.) are essential to meet the ever-increasing challenges posed by
cyber security related threats. Same has been circulated by central agencies
advisories in the form of Indicator of Compromise (IOC) and Indicator of Attack
(IOA) from time to time.[Ref(2)]
To address these concerns and align with industry best practices, the following
measures needs to be initiated for the strengthening of our IT infrastructure at
zonal level.

Page 2 of 5
 Streamlining of IT works at zonal locations
________________________________________________________________________________________________________________________

o Network Security.
o Active Directory authentication.
o Endpoint Security and Data Security.
2. Regular Security Audits: with above measures IT infrastructure will be
strengthen but it is necessary to conduct regular security audits and
vulnerability assessments (VAPT) to identify and address potential weaknesses
in our IT infrastructure proactively.
3. ERP Process Improvement: The effective utilization of ERP applications is
crucial for streamlining day-to-day IT operations, enhancing productivity, and
maintaining a competitive edge. Enhancing the scalability, flexibility of our IT
infrastructure to accommodate the growing needs of our ERP applications,
especially during peak operational periods.
4. IT Policy review and enhancement: Conduct a comprehensive review of existing
IT policies and procedures in-place to identify gaps, inconsistencies, and asses
areas for improvement. Same needs to be done in accordance with needs of
MSETCL users in field offices under various Zone offices.
5. Recently, WRLDC has initiated a process wherein Cyber Security compliance
certificate needs to be submitted mandatorily from CISO before sub-station and
bay charging.
6. By prioritizing the strengthening of our IT infrastructure, it will not only
enhance our overall cyber security posture but also demonstrate the
commitment to safeguard the business of our organization and its stakeholders.
Presently, there is one post of Assistant Programmer deployed at the zonal office.
While instructions to strengthen the IT related infrastructure had been issued in the
past, AP (IT) post at the zone being a junior level post needs technical guidance in
order to execute these works.
C. Proposal
Considering above, it is proposed to allocate these IT works at 7 zones to each
of the System Analyst (IT). It is to note that as all major organization level
crucial IT works are carried out centrally from the CO, SA (IT) will be posted at
the Corporate Office only and primary works will those at the CO office.

Since most of the IT work is of centralized nature like SAP, Cloud Operations,
Software development etc , System Analyst (IT) may work at Corporate office
with monitoring the IT and Cyber Security related works at Zonal Level.

Page 3 of 5
 Streamlining of IT works at zonal locations
________________________________________________________________________________________________________________________

The IT Works at Corporate Office is of interrelated, for better coordination and

effective decision making, it is necessary to retain System Analyst(IT) at
Corporate office.

It is essential that the posting of the SA (IT) to be retained at the Corporate

Office to ensure that Corporate Office works are not adversely affected.

Additionally, the SA (IT) will be allocated zonal location/s and will be

responsible to implement and analyse cyber security measures/ advisories
effectively, related decision making considering future digital journey of
MSETCL and accordingly upgrade the IT infrastructure including PC, Network
components etc. The zonal allocations to the SAs will be done by the CGM (IT)
and the zonal AP (IT) will report to their respective SA (IT). As per the work
allocation, the SA may need to occasionally visit the zonal allocations, as
approved by the DGM (IT).
Work review will be taken by after 6 months by CGM (IT).

D. Reporting Structure
In view of the above changes, the reporting structure of the zonal AP (IT) for KRA-
KPI from 2024-45 onwards will be as follows:

Reporting System Analyst (IT)

Officer
CSO1 EE (Admin) of respective zone
CSO2 DGM (IT), Corporate Office
Accepting Officer CGM (IT)

A. Submitted for approval

Enclosures: As above

Page 4 of 5
 Streamlining of IT works at zonal locations
________________________________________________________________________________________________________________________

CGM (IT)

Director (Operations)

Director (Projects)

Director (Human Resources)

Hon’ble CMD, MSETCL

Page 5 of 5