India’s capital markets regulator has initiated a fresh cybersecurity push as artificial intelligence begins reshaping the nature and scale of digital threats facing financial institutions. The Securities and Exchange Board of India (SEBI) has constituted a task force focused on tackling AI-driven cyber risks across the securities market ecosystem, underscoring rising concerns around systemic vulnerabilities in a highly digitised market environment.

The development comes at a time when India’s securities infrastructure is handling record levels of retail participation, algorithmic trading activity, and cloud-based financial operations. With exchanges, depositories, brokers, mutual funds, and market intermediaries operating through deeply integrated digital systems, regulators appear increasingly focused on preventing technology disruptions from turning into broader financial stability events.

According to the regulatory framework outlined in the announcement, the newly formed task force will examine emerging cyber risks linked to artificial intelligence and recommend preparedness measures for regulated entities. SEBI also indicated that market participants should begin integrating AI into cybersecurity systems themselves, including the use of AI-led threat detection tools and automated defensive mechanisms. At the same time, the regulator stressed that risks associated with AI deployment must be continuously reassessed rather than treated as one-time compliance exercises.

The initiative reflects a wider global regulatory trend where financial watchdogs are moving beyond conventional cyber hygiene standards and preparing for next-generation threats such as AI-generated phishing attacks, automated malware systems, deepfake-enabled fraud, and machine-led intrusion attempts. Financial markets have become particularly vulnerable because of their dependence on real-time connectivity and uninterrupted transaction processing.

India’s securities market has undergone rapid digital transformation over the last decade. From app-based investing to API-linked trading systems and automated settlement infrastructure, technology has become central to market operations. While this shift has improved efficiency and market access, it has also expanded the potential attack surface for cybercriminals.

SEBI acknowledged this interconnectedness in its observations, noting that disruptions at a single institution could potentially cascade through the wider financial ecosystem. That concern is especially relevant given the concentration of market infrastructure in a handful of exchanges, clearing corporations, and depositories that support millions of daily transactions.

The regulatory move may also influence future compliance expectations for brokers, exchanges, registrars, asset management companies, and fintech-linked intermediaries. Cyber resilience is increasingly moving from being an operational requirement to becoming a governance issue that boards and senior management will likely need to monitor more actively.