J&K Govt Cracks Down on Unauthorised Digital Platforms in Cybersecurity Overhaul. Private Email Use Banned for Official Communication
Srinagar, May 21, In a sweeping move to fortify digital governance, the Jammu and Kashmir administration has issued a circular mandating all departments to adopt stringent cybersecurity practices, terminate unauthorised digital platforms, and ensure full compliance with official IT governance protocols.
The order, issued by the General Administration Department following high-level deliberations chaired by the Chief Secretary, directs immediate deactivation of all departmental websites operating on non-official domains like “.com”, “.org”, or “.net”. Government websites are now mandated to be hosted exclusively on authenticated domains such as “.gov.in” or “.jk.gov.in”.
Further, any proposals for new websites must be routed through the National Informatics Centre (NIC) and approved by the Information Technology Department to ensure uniformity and compliance with cyber standards.
Crucially, the government has barred the use of personal email services such as Gmail, Yahoo, or Rediffmail for any official communication. All communications must be conducted using NIC-provided official email IDs. Emails from unofficial domains will be treated as invalid and may be ignored.
The administration has also ordered a comprehensive IT infrastructure audit across all departments. Chief Information Security Officers (CISOs) and Information Security Officers (ISOs) are tasked with compiling hardware and software inventories, verifying licensed systems, ensuring the presence of antivirus/firewall solutions, and assessing network security configurations. A standardized reporting format will be provided by the IT Department for uniformity.
To bolster departmental capacity, the NIC will conduct cyber hygiene and threat response training for IT staff. These sessions will cover topics such as email security configuration, CERT-In reporting protocols, and safe digital practices.
The circular strictly prohibits the use of pirated or outdated software, stating that all IT procurements must adhere to minimum technical standards set by the IT Department.
Departments have been given a 15-day deadline to submit detailed compliance reports. Failure to comply will invite disciplinary action under the relevant administrative and IT conduct rules.
