arbiter
JournalsAccount

Toward a human-centric view of NCIIPC guidelines for enabling its adoption in Indian critical information infrastructures

Vivek Kant et al.

Information and Computer Security2026https://doi.org/10.1108/ics-01-2026-0006article
AJG 1ABDC B
Weight
0.50

Abstract

Purpose The Government of India has the National Critical Information Infrastructure Protection Centre (NCIIPC) guidelines for safeguarding its critical assets. This paper aims to highlight that the next phase of India’s cybersecurity maturity must focus on embedding and explicitly articulating the needs of the human dimension at the structural, operational and behavioral levels of the NCIIPC guidelines to aid in its ease of adoption. Design/methodology/approach This study adopts a conceptual and analytical research approach based on a systematic examination of the NCIIPC guidelines. It comprehends the guidelines in terms of human centricity using the following three analyses: Situational Deconstruction; People-Process-Technology Mapping; and Role-based (Point of Contact) Analysis. These analyses are conducted on the guidelines as strategic entry points to find the human-centric gaps that stall its adoption process. Findings The analysis reveals that while the guidelines are strategically comprehensive, their adoption is constrained by abstraction at the operational level, ambiguous role allocation, overreliance on technological controls and limited consideration of human performance and organizational diversity. Practical implications The paper recommends three pathways for improving guideline adoption: enhancing organizational accessibility and inclusivity, guideline redesign and reassessing cybersecurity as a national thrust. These recommendations aim to support policymakers, regulators, critical infrastructure organizations and auditors in operationalizing cybersecurity governance. Originality/value This study advances human-centric cybersecurity research by extending it to the analysis of a national-level cybersecurity guideline. It offers a novel, structured analysis for enhancing guideline adoptability and positions human centricity as a core dimension of cybersecurity maturity in India’s critical infrastructure ecosystem.

Open via your library →

Cite this paper

https://doi.org/https://doi.org/10.1108/ics-01-2026-0006

Or copy a formatted citation

@article{vivek2026,
  title        = {{Toward a human-centric view of NCIIPC guidelines for enabling its adoption in Indian critical information infrastructures}},
  author       = {Vivek Kant et al.},
  journal      = {Information and Computer Security},
  year         = {2026},
  doi          = {https://doi.org/https://doi.org/10.1108/ics-01-2026-0006},
}

Paste directly into BibTeX, Zotero, or your reference manager.

Flag this paper

Toward a human-centric view of NCIIPC guidelines for enabling its adoption in Indian critical information infrastructures

Flags are reviewed by the Arbiter methodology team within 5 business days.

Evidence weight

0.50

Balanced mode · F 0.40 / M 0.15 / V 0.05 / R 0.40

F · citation impact0.50 × 0.4 = 0.20
M · momentum0.50 × 0.15 = 0.07
V · venue signal0.50 × 0.05 = 0.03
R · text relevance †0.50 × 0.4 = 0.20

† Text relevance is estimated at 0.50 on the detail page — for your query’s actual relevance score, open this paper from a search result.