Federal government has constituted a National Committee for Information and Communications Security, NCICS, to strengthen the protection of critical information infrastructure and information systems amid rising cyber threats and national security risks. A notification issued by Cabinet Division highlighted that hostile agencies continue to pose persistent risks to Pakistan’s communications and cyber networks through espionage, denial, and disruption, making immediate vulnerability assessments and development of a comprehensive information security framework a priority.
The committee will be chaired by Secretary of Ministry of Information Technology and Telecommunication, MoITT, and will include Chairman of Pakistan Telecommunication Authority, Director General of National Computer Emergency Response Team, an additional secretary from Establishment Division, a representative of the country’s premier intelligence agency, and Secretary of National Telecommunication and Information Security Board, who will serve as committee secretary. Authorized representatives from provincial governments, Gilgit-Baltistan, and Azad Jammu and Kashmir will also be members, ensuring nationwide oversight. Co-opted members may include representatives from Finance Division, Ministry of Foreign Affairs, and other sectors or academia, as deemed necessary to address specialised cybersecurity requirements.
NCICS mandate covers assessing and monitoring information systems of federal ministries, divisions, and organisations to identify vulnerabilities, conduct gap assessments, evaluate existing information security processes, and recommend risk-mitigation measures to strengthen overall security posture. The committee will also analyse completed cybersecurity and IT audits, carry out gap assessments in critical sectors such as health, energy, civil aviation, and transportation, and formulate compliance mechanisms linked to organisational performance indicators. Establishing a Federal CERT under NCERT, in line with CERT Rules 2023, is part of the strategy, with potential integration of managed security service providers to enhance operational capability.
To ensure effective implementation, tier-down committees will be formed covering information security operations, human resource restructuring, financial planning, and security of foreign missions. Cabinet Division will act as NCICS secretariat and submit quarterly progress reports to the competent authority. This approach aims to create a sustainable and resilient cybersecurity framework across federal institutions, enabling proactive monitoring, intelligence-led responses, and risk mitigation across Pakistan’s critical digital and communications infrastructure.
Follow the SPIN IDG WhatsApp Channel for updates across the Smart Pakistan Insights Network covering all of Pakistan’s technology ecosystem.
