Pakistan Establishes 24/7 Cybersecurity Control Room to Counter Rising Digital Threats

By Tanveer Ahmed :

Pakistan has activated a new layer of cyber defence with the launch of a round-the-clock cybersecurity monitoring centre in Islamabad, as authorities warn of increasing risks to the country’s digital infrastructure.

The facility, set up by the National Cyber Emergency Response Team Pakistan (nCERT), will operate from the Pakistan Secretariat in Islamabad. Officials say the control room will function 24 hours a day to monitor, analyse and respond to cyber incidents affecting government websites, public networks and other critical digital systems.

According to an official notification, the centre will serve as the country’s main coordination hub for cybersecurity operations, enabling authorities to detect potential threats early and respond before they escalate.

The move comes amid concerns that sensitive public systems could face targeted cyberattacks during the current security climate.

Under new directives, all internet service providers, sectoral computer emergency response teams and provincial CERTs have been instructed to establish dedicated monitoring desks. These units will be required to maintain continuous surveillance of their networks and report any suspicious activity or confirmed breaches to nCERT without delay.

Officials say the government is also reinstating strict coordination protocols previously used during major national events, when similar measures were deployed to counter cyber threats from hostile actors. This time, authorities say the emphasis will be on faster communication and quicker escalation during incidents.

Key institutions have been asked to appoint focal persons and submit updated contact details to nCERT by 4 March 2026. These include the Ministry of Information Technology and Telecommunication Pakistan, Pakistan Telecommunication Authority, National Information Technology Board, National Telecommunication Corporation Pakistan, along with provincial IT boards and other relevant agencies.

Two senior officials will oversee national-level coordination: Dr Muhammad Yousaf, Director of CERT, and Dr Mujahid Shah, Assistant Director for Incident Management.

Alongside operational measures, the notification outlines a set of National Baseline Security Guidelines aimed at preventing common cyber incidents. These include protections against phishing campaigns, website defacement, credential leaks, data breaches, ransomware attacks and system misconfigurations.

The advisory urges organisations to strengthen email authentication systems using security protocols such as SPF, DKIM and DMARC. It also recommends deploying web application firewalls to protect publicly accessible systems.

Agencies have been directed to enforce multi-factor authentication, encrypt sensitive data both at rest and in transit, and enable centralised security monitoring through Security Information and Event Management systems. Regular vulnerability scanning has also been advised.

To mitigate the risk of ransomware attacks, institutions have been urged to maintain offline or air-gapped data backups, allowing critical information to be restored if primary systems are compromised.

The guidance further emphasises business continuity and disaster recovery planning. Organisations are advised to maintain redundant internet service connections, test system failover mechanisms and ensure secure configuration management. Authorities also recommend establishing alternative communication channels to maintain coordination during cyber emergencies.

About Author