F No. 500/137/2011-FTTR-III
GOVERNMENT OF INDIA
DEPARTMENT OF REVENUE
CENTRAL BOARD OF DIRECT TAXES
FOREIGN TAX & TAX RESEARCH DIVISION
Dated: April 7, 2015
An Information Security Committee (ISC) in the Central Board of Direct Taxes (CBDT) is hereby constituted compromising the following officers:-
(a) Member (IT), CBDT
(b) Joint Secretary (FT&TR-I)
(c) Joint Secretary (TPL-II)
(d) CIT (Inv.)
(e) CIT (M&TP)
(f) DIT (I&CI), New Delhi
(g) DIT (Systems-II)
Member (IT), CBDT will be the Chairman of the ISC. CIT (M&TP) shall also perform the role of Chief Information Security Officer (CISO).
2. Board Responsibilities of ISC would be as under:
(a) Ratification of the Information Security Policies and Procedures (ISPP) suggested by the CISO.
(b) Ensure that ISPP is implemented by ensuring the involvement of the business heads.
(c) Conduct the management review of the ISPP to ensure continuing suitability, adequacy and effectiveness of ISPP.
(d) Initiate internal and external security reviews and ensuring that action is taken to rectify any identified shortfalls.
(e) Responsible for disciplinary action in cases of breach of ISPP.
3. Board Responsibilities of CISO would be as under:
(a) Responsible for preparing, maintaining and communicating ISPP.
(b) Oversee all information security processes and serve as the focal point for all information security issues and concerns.
(c) Ensure that responsibilities are defined for and that procedures are in effect to promptly detect, investigate, report and resolve security incidents.
(d) Ensure that ongoing information security awareness education and training is provided to all employees.
(e) Provide reports to the ISC on the status of information security, policy violations and information security incidents.