Government to Unveil Comprehensive Cybersecurity Strategy for Financial Sector by Year-End

India Aims to Develop Comprehensive Cybersecurity Strategy for Financial Sector

The Indian government is working to roll out a comprehensive cybersecurity strategy covering banks, securities markets, insurance, pensions, and financial market infrastructure by December, in response to rising concerns over advanced artificial intelligence-driven cyber risks and vulnerabilities exposed by tools such as Anthropic's Mythos. A government official revealed that the framework aims to establish a uniform baseline of cyber resilience across regulated entities, address existing gaps, and align India's fragmented cyber frameworks into a more coordinated, sector-wide approach.

The financial sector cybersecurity strategy is expected to be ready in the coming months, likely by the end of this year. The official stated that work is underway, and the strategy will apply across the entire ecosystem – banking, securities markets, insurance, pensions, and financial market infrastructure. The framework is expected to create common standards and baseline safeguards across the financial sector, while improving coordination among regulators and financial institutions in responding to evolving threats.

The accelerated work on the strategy is a response to the rapid evolution of AI-enabled cyber tools that can significantly increase both the scale and speed of attacks. The recent global alerts around Mythos and similar models capable of identifying and exploiting software weaknesses have triggered banks to step up their cyber defences and review system exposures in India. The objective is to create a uniform baseline across the sector, with the recent developments around advanced AI-based cyber tools reinforcing the urgency of policy action.

Read also: Treasury Yields Experience Largest Increase in Two Weeks Following Release of Labor Market Data

The developments have also triggered policy discussions at global forums, including the Financial Stability Board, amid concerns that increasingly sophisticated AI-enabled capabilities could pose broader risks to financial stability. Concerns around AI-driven cyber tools gained prominence after Anthropic's Mythos model drew global attention for its ability to identify and potentially exploit software vulnerabilities at machine speed. Policymakers and financial institutions worldwide have since been assessing the implications for highly interconnected financial networks, where vulnerabilities in one institution or infrastructure layer could rapidly spread across the ecosystem.

In India, the issue has pushed banks and financial institutions to strengthen cyber preparedness and reassess legacy technology systems. The concerns also come amid a broader policy focus on safeguarding digital public infrastructure and payment systems as the country's financial ecosystem becomes increasingly technology-driven. Finance Minister Nirmala Sitharaman had recently flagged concerns around emerging AI-related risks facing the banking system, and held a high-level meeting on April 23 with senior bank executives, the Reserve Bank of India, and the Ministry of Electronics and Information Technology to review cyber preparedness and assess risks arising from advanced AI-driven capabilities.