NATIONAL CRITICAL INFORMATION INFRASTRUCTURE PROTECTION CENTRE (NCIIPC)

A Unit of National Technical Research Organisation

Home Intiatives

Conformity Assessment Framework

NCIIPC in collaboration with QCI has developed a Conformity Assessment Framework (CAF) aimed at enhancing cybersecurity across Critical Sectors. NCIIPC is the Scheme Owner (SO) and QCI as the National Accreditation Body is Scheme Manager of the schemes on behalf of NCIIPC. The Conformity Assessment Framework for the cybersecurity of Critical Sector Entities (CSEs) comprises the following Schemes: -

  1. Accreditation of Certification Bodies (CBs), Inspection Bodies (IBs) and Certification Bodies for Persons (PrCBs) through National Accreditation Board for Certification Bodies (NABCB).
  2. Conformity Assessment and Certification of CSEs by Certification Bodies for the CSE’s Cyber Security Management System (CSMS).
  3. Inspection by Inspection Bodies of the cybersecurity posture of CSEs.
  4. Certification by Certification Bodies for Persons of competencies of individual Cybersecurity Professionals.
  5. Accreditation of Consultancy Organisations (COs) and Training Bodies (TBs).

The relevant scheme documents can be accessed through the link given below: -

  1. Certification Scheme for Cyber Security Management System (Levels 1, Level 2 and Level 3)
  2. Inspection Scheme for Information Technology and Industrial Control Systems (IT/ICS)
  3. Personnel Certification Scheme for Cyber Security Professionals (CyberPros)
  4. Accreditation Scheme for IT/ICS Consultancy Organisations (COs)
  5. Accreditation Scheme for IT/ICS Training Bodies (TBs)

CAF has been developed through multi-stakeholder consultation that has considered the national legal and regulatory mandates to create a robust, cyber security ecosystem at the national level. The CAF has been designed in a manner by which CSEs can adequately address the three pillars of cyber security i.e. processes, people, and technology within their organizations.

A series of awareness programs are being organised across the country to provide insights into these schemes from both technical and conformity assessment perspectives. For more information about the awareness program, please click here

For any questions or require further clarification related to awareness programs, please contact at helpdesk1@nciipc.gov.in