Académique Documents
Professionnel Documents
Culture Documents
THREAT PERCEPTIONS
&
SECURITY MEASURES
Visit us at : www.nsdl.co.in 1
AGENDA
• Introduction to Depository
• NSDL System Overview
• Threat Perception
• Security Measures
• IT Audit Practices
Visit us at : www.nsdl.co.in 2
NSDL - Bank -- An Analogy
BANK
BANK NSDL
NSDL
➨H oldsfundsin ➨H oldssecuritiesin
accounts accounts
➨Transfersfunds ➨Transferssecurities
betweenaccounts betweenaccounts
➨Transferswithout ➨Transfersw ithout
handlingcash handlingphysical
securities
➨Safekeepingofmoney ➨Safekeepingofsecurities
Visit us at : www.nsdl.co.in 3
Legislation/Regulations
• Daily Reconciliation
Visit us at : www.nsdl.co.in 4
NSDL System Overview
ANOTHER
DEPOSITORY
CC -1 SR-1
DEPOSITORY
CLEARING REGISTRAR
CORP.
CC - 2 NSDL SR-2 /ISSUERS
CC - 3 SR-3
DP - 1 DP - 2 DP - 3 DP - 4 DP - 5
DEPOSITORY PARTICIPANTS
STAR NETWORK
SWIFT MESSAGING CONVENTION
Visit us at : www.nsdl.co.in 5
NSDL Today
Visit us at : www.nsdl.co.in 7
Security Measures Scope
• Participants System
• Depository Network
• Depository Central System
• NSDL Internal Office Infrastructure
• Internet based Services
Visit us at : www.nsdl.co.in 8
Participants System
• Maker / Checker Implementation
• Audit Trails
• Inspection / Audit
• System Mandated Reconciliation
• Remote site backup + Log shipping
• Dial-up - Readiness Checks
Visit us at : www.nsdl.co.in 9
Depository Network Set-up
I n t r u s i o n D e t e c t i o n S y s t e m D a t a b a s e
S e r v e r
L 3 S w i t c h
a t T I CS PI S C O P I X F i r e S w e ca ul l r 1 i t y G a t e w a y
I n t e r n e t N S D L S e t u p ( a t T I S P ) A p
p l i c a t i o n /
C l o u d L o c a l D i r e c t o r 1 D a t a b a s e
R o u t e r S e r v e r
a t T I S P
C I S C O P I X F i r e w a l l 2
N S D L S e t u p ( a t T I S P )
S t o r a g
L o c a l D i r e c t o r 2
A p p l i c a t i o n
S e r v e r
N M S S e c u r i t y G a t e w a y
W E B S e r v e r s
6 4 K b p s L e a s e d
S P E E D e O N L I N E - 1
l i n e
S P E E D e O N L I N E - 2
N S D L S e t u p
Visit us at : www.nsdl.co.in 16
Software Change Management
Visit us at : www.nsdl.co.in 18
Business Continuity Planning
System and Data
• Processor/Disk Sparring
• Standby controller/Router
• Dual Logging
• Log file replication at another site
• Fire proof back-up storage
• Safe copy of software & critical documents
• Periodic Operations from DRS Facility
Visit us at : www.nsdl.co.in 19
Business Continuity Planning
Network
NSE Primary NSE DRS HUB
HUB, Mumbai,
X. 25 VSAT Cloud
NSENET
NSDL Primary
Production Site ISDN / PSTN
Mumbai
NSDL NET
Fall Back
NSDL TC
NSDL DRS
Leased Line
NSDLNET
Visit us at : www.nsdl.co.in Business 20
7
Partners
IT Audit Practices
• Security Committee
• Vulnerability Assessment Group
• Risk Analysis Group
• Security Audit and Penetration Testing
• Surprise audit by Security Officer
Reporting to MD
Visit us at : www.nsdl.co.in 21