OFOFO  
[All Features](https://www.ofofo.ai/allfeatures)  
[Pricing](https://www.ofofo.ai/pricing)  
[Marketplace](https://www.ofofo.ai/marketplace)  
[Questionnaire AI](https://www.ofofo.ai/questionnaireai)  
[Compliance AI](https://www.ofofo.ai/complianceai)  
[Procurement AI](https://www.ofofo.ai/procurementai)  
[Integration Agents](https://www.ofofo.ai/integrationagents)  
[Get Early Access](https://www.ofofo.ai/earlyaccess)  
[Schedule a Demo](https://cal.com)  

# SEBI CSCRF for VC Funds  
Venture Capital funds need to comply with SEBI's Cybersecurity and Cyber Resilience Framework (CSCRF) by June 30, 2025  

[Download PDF](https://www.sebi.gov.in) [Contact Us](https://www.ofofo.ai/contact)  

---

## What is CSCRF?  
SEBI's Cybersecurity and Cyber Resilience Framework (CSCRF) is a regulatory framework designed to strengthen the cybersecurity posture of SEBI-regulated entities (REs) in the Indian securities market.  

---

## Goals of the Framework  
- **Strengthen Cybersecurity**: Enhance financial sector's defenses against evolving cyber threats.  
- **Build Cyber Resilience**: Develop capabilities to anticipate, withstand, contain, and recover from incidents.  
- **Align with Global Standards**: Mandate best practices and certifications.  
- **Ensure Operational Continuity**: Robust incident response and monitoring mechanisms.  
- **Promote Governance**: Board-level oversight, clear responsibilities, and strong risk management.  

---

## What Needs to be Done  
- Policy Creation: Tailored cybersecurity policy  
- Security Operations Center (SOC): Real-time monitoring  
- Incident Response: Detailed plan for handling incidents  
- Certifications: ISO 27001, VAPT testing  
- Third-Party Risk: Vendor compliance  
- Data Localization: Store regulatory data within India  
- vCISO: Virtual Chief Information Security Officer oversight  

---

## How It Will Be Done  
- Generate contextual cybersecurity policies based on SBOM.  
- Automate NDAs and contracts for compliance.  
- Answer security-related audit questions.  
- Implement advanced tools like Cloudflare ZTNA and Acronis.  
- Create organizational rules to enhance awareness.  
- Provide mandatory vCISO for governance.  

---

## What Happens if VCs Don’t Comply?  
Non-compliance with CSCRF can lead to:  
- Regulatory actions, fines, and penalties  
- Mandatory audits or investigations  

---

CONTACT  
[Contact Us](https://www.ofofo.ai/contact)  

RESOURCES  
[All Features](https://www.ofofo.ai/allfeatures)  
[Pricing](https://www.ofofo.ai/pricing)  
[Question Bank](https://questionbank.ofofo.io)  
[Events](https://www.ofofo.ai/events)  
[Blog](https://www.ofofo.ai/blog)  
[Marketplace](https://www.ofofo.ai/marketplace)  

AGENTIC AI  
[Questionnaire AI](https://www.ofofo.ai/questionnaireai)  
[Compliance AI](https://www.ofofo.ai/complianceai)  
[Procurement AI](https://www.ofofo.ai/procurementai)  
[Integration Agents](https://www.ofofo.ai/integrationagents)  
[Changelog](https://www.ofofo.ai/changelog)  

CERTIFICATIONS
[ISO/IEC 42001:2023](https://cdn.prod.website-files.com/678c9869be6012a3dea06b29/68ec83619128c7a42815534e_OFOFO%20PRIVATE%20LIMITED%2042001%20UKASCERT.pdf)
[ISO/IEC 27001:2022](https://cdn.prod.website-files.com/678c9869be6012a3dea06b29/68ec8361aac7ce64b3a70e32_Ofofo%20private%20limited%20-%20iso-iec%2027001-2022.pdf)  

GET STARTED  
[Get Early Access](https://www.ofofo.ai/earlyaccess)  
[Schedule a Demo](https://cal.com)  
[Contact Us](https://www.ofofo.ai/contact)  

LOCATIONS  
# Middletown  
Ofofo Inc. 651 N Broad St, Middletown, DE 19709, USA  

# Bengaluru  
Ofofo Pvt. Ltd. 18/20, 1st Flr, Clayworks Create, BLR 560076, IND  

# Milan  
Ofofo Inc. S.R.L Largo Augusto 3, Milan 20122, Italy  

[Privacy Policy](https://www.ofofo.ai/privacy-policy)  
[Terms of Service](https://www.ofofo.ai/terms-of-service)  
[Return Policy](https://www.ofofo.ai/return-policy)

‍