Tripura

December, 2026

The State Load Despatch Centre (SLDC), Tripura has successfully upgraded its Information Security Management System (ISMS) to align with the latest global standards. In close collaboration with C-DAC Kolkata, SLDC Tripura has transitioned from the 2013 framework to the more robust ISO/IEC 27001:2022 certification.This milestone places SLDC Tripura at the forefront of cybersecurity for critical infrastructure, ensuring readiness well ahead of the mandatory global phase-out of the 2013 standard.

The Challenge: Navigating the ISO/IEC 27001:2013 to ISO/IEC 27001:2022 Shift

The transition is not merely a paperwork update but a structural shift designed to address modern threats like cloud vulnerabilities and supply chain attacks. Organizations like SLDC Tripura faced several key hurdles during this process:

• Restructuring the Control Framework: The 2022 update reduced the total number of controls from 114 to 93, grouping them into four "themes" (Organizational, People, Physical, and Technological) instead of the previous 14 domains.
• Implementing New Security Domains: Organizations must now integrate 11 entirely new controls, including Threat Intelligence, Physical Security Monitoring, and Information Deletion.
• Update of the Statement of Applicability (SoA): Transitioning requires a complete re-mapping of existing security measures to the new structure, often requiring a total revision of the SoA to reflect how the 93 new controls are being met.
• Closer Link to Organizational Risk: The 2022 version places a higher emphasis on how the ISMS aligns with the organization's strategic objectives and requires explicit risk owner approval for residual risks.

The Role of C-DAC Kolkata

The certification was spearheaded exclusively by the C-DAC Kolkata SANS Team, under the leadership of Dr. C. H. A. S. Murty, Centre Head, C-DAC Kolkata, and led on the ground by Shri Kousik Maiti, Scientist E and Shri Anupam Chanda Scientist E.

The core implementation team comprised Shri Aniruddha Datta, and Shri Sanjeev Kumar, who provided consistent end-to-end support throughout the ISMS lifecycle. Their responsibilities included ISMS framework design and implementation, risk assessment and treatment, internal audits, IT/OT security audits, vulnerability assessment and penetration testing (VAPT), documentation, compliance alignment, and coordination through to successful certification.