NIRMATA Guides — TRUST-IN Bharat

Find your question

Each guide matches exactly one question in the NIRMATA self-assessment. Use the code (e.g. GL-01) to find yours.

Understand your level

Read what each maturity level looks like in practice. Find where your organisation honestly sits today.

Improve and evidence

Follow the step-by-step actions. Collect the evidence listed so you're ready for auditors and reviewers.

All 12 NIRMATA Pillars

Click any question code to open its guide. Pillar weights show contribution to your overall maturity score.

🏛️

GL · P1

Governance & Leadership

10% of OML score

Board-level oversight, security ownership, policies, and strategic direction for cybersecurity and data protection.

12 questions

GL-01 GL-02 GL-03 GL-04 GL-05 GL-06 GL-07 GL-08 GL-09 GL-10 GL-11 GL-12

⚖️

RC · P2

Risk & Compliance

20% of OML score

Risk management frameworks, regulatory compliance with DPDP Act, CERT-In, IT Act, and audit posture.

15 questions

RC-01 RC-02 RC-03 RC-04 RC-05 RC-06 RC-07 RC-08 RC-09 RC-10 RC-11 RC-12 RC-13 RC-14 RC-15

💻

AD · P3

Application & Product Security

6% of OML score

Secure SDLC, DevSecOps, vulnerability management, SAST/DAST, and secure coding standards.

20 questions

AD-01 AD-02 AD-03 AD-04 AD-05 AD-06 AD-07 AD-08 AD-09 AD-10 AD-11 AD-12 AD-13 AD-14 AD-15 AD-16 AD-17 AD-18 AD-19 AD-20

🗄️

IAM · P4

Asset & Data Management

8% of OML score

Asset inventory, data classification, data lifecycle management, and retention policies.

15 questions

IAM-01 IAM-02 IAM-03 IAM-04 IAM-05 IAM-06 IAM-07 IAM-08 IAM-09 IAM-10 IAM-11 IAM-12 IAM-13 IAM-14 IAM-15

🔐

IS · P5

Identity & Access

8% of OML score

Identity management, MFA, privileged access controls, and zero-trust principles.

24 questions

IS-01 IS-02 IS-03 IS-04 IS-05 IS-06 IS-07 IS-08 IS-09 IS-10 IS-11 IS-12 IS-13B IS-14B IS-15B IS-16B IS-17B IS-18B IS-19B IS-20B IS-21B IS-22B IS-23B IS-24B

🌐

APS · P6

Infrastructure Security

12% of OML score

Network security, endpoint protection, cloud security, and physical infrastructure controls.

15 questions

APS-01 APS-02 APS-03 APS-04 APS-05 APS-06 APS-07 APS-08 APS-09 APS-10 APS-11 APS-12 APS-13 APS-14 APS-15

🔗

SCS · P7

Supply-Chain Security

8% of OML score

Third-party risk management, vendor assessments, and software supply-chain controls.

15 questions

SCS-01 SCS-02 SCS-03 SCS-04 SCS-05 SCS-06 SCS-07 SCS-08 SCS-09 SCS-10 SCS-11 SCS-12 SCS-13 SCS-14 SCS-15

🚨

IR · P8

Incident Readiness

4% of OML score

Incident response plans, playbooks, CERT-In reporting obligations, and breach response drills.

15 questions

IR-01 IR-02 IR-03 IR-04 IR-05 IR-06 IR-07 IR-08 IR-09 IR-10 IR-11 IR-12 IR-13 IR-14 IR-15

🔄

BCR · P9

Business Continuity & Resilience

4% of OML score

BCP/DR plans, RTO/RPO objectives, backup testing, and crisis management.

15 questions

BCR-01 BCR-02 BCR-03 BCR-04 BCR-05 BCR-06 BCR-07 BCR-08 BCR-09 BCR-10 BCR-11 BCR-12 BCR-13 BCR-14 BCR-15

🔒

PDP · P10

Privacy & Data Protection

6% of OML score

DPDP Act 2023 alignment, personal data protection, data subject rights, and PII handling.

15 questions

PDP-01 PDP-02 PDP-03 PDP-04 PDP-05 PDP-06 PDP-07 PDP-08 PDP-09 PDP-10 PDP-11 PDP-12 PDP-13 PDP-14 PDP-15

🎓

CTA · P11

Culture, Training & Awareness

8% of OML score

Security awareness programmes, training cadence, phishing simulations, and building a security-first culture.

15 questions

CTA-01 CTA-02 CTA-03 CTA-04 CTA-05 CTA-06 CTA-07 CTA-08 CTA-09 CTA-10 CTA-11 CTA-12 CTA-13 CTA-14 CTA-15

📡

MD · P12

Monitoring & Detection

6% of OML score

SIEM, log management, SOC capabilities, threat detection, and incident alerting.

15 questions

MD-01 MD-02 MD-03 MD-04 MD-05 MD-06 MD-07 MD-08 MD-09 MD-10 MD-11 MD-12 MD-13 MD-14 MD-15

NIRMATA Cybersecurity Guides

Find your question

Understand your level

Improve and evidence

All 12 NIRMATA Pillars