Compliance
RBI, SEBI CSCRF, CERT-In, ISO 27001, SOC 2 — Indian regulatory mapping.
DPDP for Startups: A Practical Data Fiduciary Checklist You Can Action This Week
You do not need an enterprise GRC team to get DPDP-ready. A practical startup checklist you can start this week.
ComplianceRBI Cybersecurity Framework 2026: What Banks and NBFCs Must Actually Do
RBI raised the bar in 2026: independent vendor assessments and evidence, not self-attestation. Here is what is actually required.
ComplianceSEBI CSCRF in 2026: Annual VAPT, Bi-Annual for MIIs, and What It Means for You
SEBI's CSCRF makes VAPT mandatory — annual for most, bi-annual for MIIs. A plain-English compliance guide.
ComplianceThe 6-Hour Rule: Building One Breach Playbook for CERT-In, DPDP, and RBI
CERT-In: 6 hours. DPDP: 72. RBI/SEBI/IRDAI: their own. One incident, five clocks — here is how to run them as one playbook.
ComplianceDPDP Enforcement Has Begun: ₹250 Crore Penalties and the Data Protection Board
The DPDP grace period is over. The Board is live, and the penalty for a breach reaches ₹250 crore.
ComplianceDPDP Act Operational Compliance: A 2026 Data Fiduciary Engineering Playbook
Moving beyond DPDP commentary to engineering execution. Data inventory, consent engineering, right-to-erasure implementation, and the 72-hour breach runbook.
ComplianceNon-Human Identity (NHI) Security: The 2026 CISO Architecture Guide
Service accounts, API keys, OAuth grants, and AI agent identities outnumber humans 30 to 80 times. A practical NHI governance framework for…
Cloud SecuritySBOM Operations at Enterprise Scale: CycloneDX, SPDX, and SLSA Provenance
Moving from SBOM generation to SBOM operations. Dependency-Track, reachability, VEX, SLSA Build L3, vendor SBOM intake, and a maturity model for grading…
Cloud SecurityPost-Quantum Cryptography Migration: Engineering Guide for 2026
A practitioner roadmap for PQC migration. NIST ML-KEM, ML-DSA, hybrid TLS, crypto-agility, CBOM, and a defensible 24-month plan for Indian enterprises.
Cloud SecurityScenario Brief: How Post-Quantum TLS Could Roll Out Across UPI Infrastructure
Tabletop-ready forecast: an illustrative roadmap for ML-KEM-based hybrid TLS across UPI switch-to-issuer links and the CIO action plan around cryptography inventory.