Professional Documents
Culture Documents
Threat Perceptions & Security Measures
Threat Perceptions & Security Measures
THREAT PERCEPTIONS
&
SECURITY MEASURES
Visit us at : www.nsdl.co.in 1
AGENDA
• Introduction to Depository
• NSDL System Overview
• Threat Perception
• Security Measures
• IT Audit Practices
Visit us at : www.nsdl.co.in 2
NSDL - Bank -- An Analogy
BANK
BANK NSDL
NSDL
Visit us at : www.nsdl.co.in 3
Legislation/Regulations
• Daily Reconciliation
Visit us at : www.nsdl.co.in 4
NSDL System Overview
ANOTHER
DEPOSITORY
CC -1 SR-1
DEPOSITORY
CLEARING REGISTRAR
CORP.
CC - 2 NSDL SR-2 /ISSUERS
CC - 3 SR-3
DP - 1 DP - 2 DP - 3 DP - 4 DP - 5
DEPOSITORY PARTICIPANTS
STAR NETWORK
SWIFT MESSAGING CONVENTION
Visit us at : www.nsdl.co.in 5
NSDL Today
Visit us at : www.nsdl.co.in 7
Security Measures Scope
• Participants System
• Depository Network
• Depository Central System
• NSDL Internal Office Infrastructure
• Internet based Services
Visit us at : www.nsdl.co.in 8
Participants System
• Maker / Checker Implementation
• Audit Trails
• Inspection / Audit
• System Mandated Reconciliation
• Remote site backup + Log shipping
• Dial-up - Readiness Checks
Visit us at : www.nsdl.co.in 9
Depository Network Set-up
I n tr u s io n D e te c tio n S y s te m D a ta b a se
S erver
L 3 S w itc h
a t T IS P C I S C O P I X F ir e w a ll 1 S e c u r it y G a t e w a y
In ter n et N S D L S e tu p (a t T IS P ) A p p lic a tio n /
C lo u d L o c a l D ir e c to r 1 D a ta b a se
R o u ter Server
a t T IS P
C I S C O P I X F ir e w a ll 2
N S D L S e tu p (a t T IS P )
S to ra g e
L o c a l D ir e c to r 2
A p p lic a t io n
S erver
N M S S e c u r it y G a t e w a y
W E B Servers
6 4 K b p s L ea sed
S P E E D e O N L IN E -1
lin e
S P E E D e O N L IN E -2
N S D L S etu p
Visit us at : www.nsdl.co.in 16
Software Change Management
Visit us at : www.nsdl.co.in 18
Business Continuity Planning
System and Data
• Processor/Disk Sparring
• Standby controller/Router
• Dual Logging
• Log file replication at another site
• Fire proof back-up storage
• Safe copy of software & critical documents
• Periodic Operations from DRS Facility
Visit us at : www.nsdl.co.in 19
Business Continuity Planning
Network
NSE Primary NSE DRS HUB
HUB, Mumbai,
X. 25 VSAT Cloud
NSENET
NSDL Primary
Production Site ISDN / PSTN
Mumbai
NSDL NET
Fall Back
NSDL TC
NSDL DRS
Leased Line
NSDLNET
Visit us at : www.nsdl.co.in Business 20
7
Partners
IT Audit Practices
• Security Committee
• Vulnerability Assessment Group
• Risk Analysis Group
• Security Audit and Penetration Testing
• Surprise audit by Security Officer
Reporting to MD
Visit us at : www.nsdl.co.in 21