India’s cybersecurity landscape is witnessing rapid growth, with the Indian Computer Emergency Response Team (CERT-In) playing a central role in driving this transformation. According to Dr. Sanjay Bahl, Director General of CERT-In under the Ministry of Electronics and Information Technology (MeitY), the nation’s cybersecurity ecosystem has evolved into a $20 billion industry, supported by over 400 startups and 6.5 lakh professionals.
Dr. Bahl shared these insights during an interactive session held in New Delhi on October 29, 2025, with visiting journalists from European Union countries. The discussion, jointly organized by CERT-In, the Ministry of Electronics and Information Technology, and the Ministry of External Affairs, focused on strengthening India’s position as a secure and resilient digital economy.
Rising Startups and Skilled Workforce
India’s expanding cybersecurity sector now includes more than 400 startups developing advanced solutions in threat detection, cyber forensics, and AI-based monitoring systems. These innovations are at the forefront of building defenses against cyber threats.
Alongside this entrepreneurial surge, the workforce of nearly 650,000 cybersecurity professionals contributes across diverse areas such as vulnerability assessment, incident response, digital forensics, and auditing.
Dr. Bahl noted that this growing ecosystem has positioned Indian cybersecurity as a formidable player globally. With a combination of skilled manpower and cutting-edge research, India’s cyber industry is scaling to meet both domestic and international security challenges.
CERT-In’s Expanding Role in Cyber Defense
As the national agency responsible for cybersecurity incident response, CERT-In, under the Ministry of Electronics and Information Technology, plays a crucial role in managing crises, assessing vulnerabilities, and coordinating information sharing across sectors. Dr. Bahl emphasized that CERT-In now increasingly relies on artificial intelligence (AI) and automation to detect, prevent, and respond to cyber incidents in real time.
He described AI as a “double-edged sword” — a tool that empowers defenders but is also exploited by adversaries. To stay ahead of such threats, CERT-In continues to refine its AI-driven analytics systems to improve situational awareness and strengthen proactive threat mitigation.
Dr. Bahl also highlighted the agency’s role in coordinating large-scale cyber drills, issuing real-time advisories, and supporting digital forensics for incident investigations. He revealed that India recorded 147 ransomware incidents in 2024, many of which were mitigated due to prompt action and information sharing led by CERT-In.
Collaborative Approach to National Cybersecurity
The session further discussed the collaborative model that CERT-In follows, uniting government agencies, industry stakeholders, academia, and international partners. This model reflects the Ministry of Electronics and Information Technology’s broader mission to build a secure digital India through capacity building, indigenous innovation, and public-private partnerships.
Dr. Bahl underlined that India’s cyber resilience depends not only on technological innovation but also on awareness and preparedness. The increasing number of startups and professionals entering the field is a strong indicator of how cybersecurity has evolved from a niche concern into a mainstream industry critical to national security and digital trust.
Facing the Digital Challenge
Despite these achievements, challenges remain. Cybercriminals are becoming technically advanced, leveraging AI, deepfakes, and advanced phishing tactics to target individuals and organizations. According to CERT-In, the use of forged digital credentials and automated attack tools has increased.
Dr. Bahl reiterated that while technological solutions are essential, the human element, skilled professionals, ethical hackers, and informed users, remains equally important. The Ministry of Electronics and Information Technology continues to focus on regulatory agility, workforce training, and international cooperation to counteract new cyber risks.
