🛡️ CERT-In Directions 2022 — In Force Now

This is not optional.
Every Indian business must comply.

The CERT-In Directions 2022 are in force. Non-compliance carries penalties of up to ₹1 crore and imprisonment of your designated officer. Three days of a compliance consultant costs more than a full year of DharmaCompliance Cyber. The decision makes itself.

Up to ₹1 crore
CERT-In penalty
per non-compliance event
₹5L – ₹50L+
Regulatory investigation
legal fees alone
₹99,990/year
DharmaCompliance Cyber
full CERT-In coverage
Pre-Launch Commitment Progress0 / 10

10 more organisations needed to activate the NordStellar-powered service. Register interest to help us reach the threshold.

See Requirements ↓
🛡️
15 Controls
Tracked automatically
6-Hour Alert
Incident reporting reminder
📋
Audit Pack
Evidence export ready
🔍
Domain Monitor
Continuous threat scanning
⚠️ CERT-In penalty: up to ₹1 crore. Legal investigation: ₹5L–₹50L+. DharmaCompliance Cyber Professional: ₹99,990/year. The decision makes itself.  

What CERT-In Requires from Your Business

Six core obligations every MSME must meet under the CERT-In Directions 2022 (amended 2023).

01
Incident Reporting within 6 Hours
All cyber incidents must be reported to CERT-In within 6 hours of detection — the most critical and time-sensitive requirement.
02
ICT System Log Retention (180 Days)
Organisations must maintain logs of all ICT systems, networks, and applications for a minimum of 180 days within Indian jurisdiction.
03
Vulnerability Assessment & Penetration Testing
Periodic VAPT of IT infrastructure, applications, and networks. Findings must be documented and remediated.
04
Designated Point of Contact
A named individual must be designated as the CERT-In Point of Contact and their details registered with CERT-In.
05
Information Security Policy
A documented, board-approved Information Security Policy covering access control, data classification, and incident response.
06
Network Time Protocol (NTP) Synchronisation
All ICT systems must synchronise with the National Physical Laboratory (NPL) or National Informatics Centre (NIC) NTP servers.
📌

DharmaCompliance Cyber tracks all 15 mandatory controls, not just these six. The full 15-control tracker is available to subscribers and generates a complete audit evidence pack for CERT-In inspections.

Simple, Transparent Pricing

Annual billing only — 2 months free compared to monthly. Pre-launch pricing locked for early registrants.

Recommended for MSMEs

CERT-In Professional

Any MSME with an online presence, customer data, or IT infrastructure

₹9,999/month
Billed annually as ₹99,990 — approx £960/year
  • Up to 3 domains monitored continuously
  • Up to 200 digital assets tracked
  • 6-hour incident alert & reporting reminder
  • 15-control CERT-In compliance tracker
  • Evidence upload & audit pack export
  • 180-day log retention checklist
  • CERT-In compliance score & detailed breakdown
  • Monthly vulnerability scan report
  • AI gap recommendations (Top 3 priority actions)
  • Designated PoC registration support
  • NTP synchronisation verification
  • VAPT execution (assessment guidance only)
  • Multi-entity / group structure
For Listed Companies & Large Enterprises

CERT-In Enterprise

Listed companies, large MSMEs, and CA firms managing multiple entities

₹19,999/month
Billed annually as ₹1,99,990 — approx £1920/year
  • Up to 10 domains monitored continuously
  • Up to 400 digital assets tracked
  • 6-hour incident alert & automated reporting workflow
  • 15-control CERT-In compliance tracker
  • Evidence upload & audit pack export
  • 180-day log retention — automated verification
  • CERT-In compliance score with board-ready report
  • Weekly vulnerability scan report
  • AI gap recommendations (full action plan)
  • VAPT execution coordination & remediation tracking
  • Dedicated compliance advisor (4 sessions/year)
  • Multi-entity / group structure support
  • Regulatory change alerts (CERT-In, MCA, SEBI)
  • Phone + email support (24h SLA)

Pre-launch pricing. Annual upfront billing via UPI, net banking, or card. GST applicable at 18% for Indian businesses.

How DharmaCompliance Cyber Works

1
🏢
Register Your Business
Add your company details and domain names. Takes under 5 minutes.
2
🔍
Continuous Monitoring Begins
NordStellar scans your domains and assets for threats and vulnerabilities 24/7.
3
📋
Track Your 15 Controls
Work through the CERT-In compliance checklist at your own pace. Upload evidence as you go.
4
Instant Incident Alerts
If a threat is detected, you receive an immediate alert with the 6-hour CERT-In reporting deadline.
5
📄
Export Your Audit Pack
Download your complete evidence pack and compliance report — ready for CERT-In inspection.

Register Your Interest

Be among the first Indian businesses to access DharmaCompliance Cyber when it launches. We will contact you with early access pricing and a launch date.

No payment required at this stage.

Was this page useful?