Rajnish: Anindya welcome to the podcast and thanks for coming over.

Anindya: Thanks Rajnish and greetings to you and your listeners on world Energy Environment Week. I'm delighted to share my thoughts on the subject, but I would like to just place a key caveat that this should not be construed to be the views of Shell. Thank you.

Rajnish: My first question to you Anindya. How do you think a carbon price can help abate emissions?

Anindya: Yeah, that's a great question Rajneesh and there is a short answer and a slightly more evolved answer, so let me attempt both. The short answer is that greenhouse gas emissions carbon emissions have an externality, and the cost is borne by the society, and not necessarily by the emitter. Carbon pricing strives to place a cost on the emitter and thereby putting the sort of cost where the burden is. But if you sort of dig up a little deeper, the whole carbon pricing policy intervention is a clear nudge that Governments can give to various players across the economy on what they need to do. And there's various aspects that we should explore in this context, first is the competitive disadvantage of the first movers. There are companies right now who are contemplating climate action, but they find that such action involves costs which brings in a competitive disadvantage to them vis a vis with their competitors and therefore they do think twice before implementing major programs. A carbon pricing across a sector will ensure that all sector players are having the same level playing field and start taking the same steps and ideally this moves into an economy wide coverage, so I think that's very important to make sure that the early movers don't get disadvantaged. Secondly, there is a policy outlook signalling that this is very important. Companies right now are struggling to see what the pricing, carbon pricing or any compliance framework will look like in the coming years and decades. So, if the government can clearly indicate that this is going to be the carbon pricing methodology that the government will adopt and how it will progressively change over time, companies will be in a position to make the right technology choices back to green technology and make their investments that are well tested against such a carbon pricing regime. On the case on this case, also another aspect we need to talk about is resource mobilization. So carbon pricing of course also yields resources for the government whether it's a carbon tax or a market based mechanism like the ETS and the government, then can direct some of this to supporting new technologies. Green technologies that are not proven, for example, if it wants to support offshore wind or biofuels but also maybe use it to address the needs of just transition, so there are going to be sections of society which will be burdened by higher cost of the energy transition and some of this will be available for that. Another aspect I think we should also consider when talking about carbon pricing is globally various countries are adopting carbon pricing where there's tax or emissions traded systems and to make sure that there are no carbon leakages these countries are likely to impose a border adjustment mechanism as Europe is considering. So, if Indian companies have to operate or export into these markets then they'll have to demonstrate that they have carbon pricing domestically. So that's very important for Indian companies to achieve, I mean India has a huge trade with Europe for example of 36 or $37 billion and the part of that will get impacted by this. And the other advantage of integrating to global markets is that Indian players will have access to much deeper and wider markets for carbon offsets. For example, they are on the buy side or sell side.

Rajnish: So Anindya I agree with you, I think carbon prices are the talk of the day. Now the big question basically, which is there when you look in the case of India is should India go for a carbon tax or should it go for an emission based or a market based trading mechanism? What do you think are the pros and cons to the two and you refer to that while you're answering the earlier question?

Anindya: Yes, indeed, these are the two popular models which various countries have experimented with over the last several years. So, the advantage for India is that India can certainly benefit from the experiences of these countries and get sort of rich learnings out of it. Carbon tax in terms of implementation is perhaps much less complex, though politically less acceptable because it's it will be very transparently seen to be adding to the cost to the customers or taxpayers, as the case may be also, it needs to sit within the existing taxation framework and jurisdictional sensitivities, and I know Ernst & Young has already presented an analysis on how this can be done. As for emissions trading, there is a possibility that the existing market-based mechanisms for energy efficiency, which is the path scheme and the eCerts and the renewable energy, which is the RPO and RECs, could be brought under a carbon framework which could then be expanded to a functional emissions trading scheme. However, the complexities of the market design that address the needs of a progressive decarbonization without causing market failure needs to be carefully considered.

Rajnish: I agree with you Anindya, I think carbon taxes are easier and as you gave there are pros and cons to each of the approach. Now, given that we have a blank piece of paper in India as of this point of time, what would be your advice to our clients as to how they should think about this and go ahead?

Anindya: Indeed, that's a very important I think question to consider for countries so companies at this point in time as various regulatory changes are likely to happen in the coming future. Well, one can never be certain as to when a compliance framework for carbon will emerge in India, but we have seen a compliance framework in energy efficiency and renewable energy that was successfully implemented. We are also hearing of an RPO type framework for green hydrogen progressive Indian companies are already beginning their decarbonization journeys by implementing internal carbon pricing. CDP's annual report mentions 31 companies already having an internal common price or companies are signing up to the SBTI's or making commitments under RE 100 EP 100 EV 100 type commitments. But to ensure a sustainable future and a social license to operate, companies will need to transparently share their plans to adhere to carbon budgets available so as to achieve the climate action goals agreed by the international community such companies will withstand any shocks that could credibly arise from external carbon pricing, whether through taxes or market-based mechanism.

Back to podcast

Podcast transcript: Cyber hygiene: Best practices for a secure digital life

08 min | 31 October 2023

In conversation with:

Rupak Ganguly
EY India Cybersecurity Consulting Director and East Lead

Tarannum: Welcome to the EY India Insights Podcast. As part of the Cybersecurity Awareness Month special, we are running a series on ‘Navigating Cyber threats’, where, as a leader, you can learn how to effectively approach the cybersecurity challenges of today and tomorrow. In the previous episode of this series, we delved into cybersecurity threats within the ecosystem. In this episode, we will outline the best practices for cyber hygiene to ensure a secure digital life.

I am your host Tarannum Khan, and our guest for today is Rupak Ganguly, Cybersecurity Consulting Director and East Lead, EY India. Rupak comes with 10 years of extensive experience in delivering technology consulting services to clients across sectors and geographies. He leads EY India's East Cybersecurity account and is responsible for providing strategic leadership and management in IT risk advisory, data privacy, cyber programing maturity, risk assessments, and cyberthreat intelligence.

Welcome to our podcast, Rupak. It is a pleasure to have you.

Rupak: Thank you, Tarannum.

Tarannum: What is cyber hygiene? Why do you think is it increasingly becoming important in today's digital world?

Rupak: Cyber hygiene refers to steps that a user or a computer or other devices can take to improve their online security and maintain system health. It implies adopting a security centric mindset and habits that help individuals and organizations mitigate potential online breaches. A fundamental principle of cyber hygiene is that it becomes part of everyday routine.

It is important because it can prevent cyber criminals from causing security breaches, installing malware, and stealing personal or confidential information from our online devices.

Tarannum: What are some simple but effective practices for maintaining good cyber hygiene?

Rupak: There are two aspects to it – one for individuals and the other for organizations. For individuals, it is critical to develop regular routines or habits and using the right tools. Cyber hygiene is not a one-off event. It is something that must be practiced regularly. One can actually create habits by setting automated reminders or adding dates to your calendars for different tasks.

These tasks might include like scanning viruses, using an antivirus software, changing passwords, keeping applications, software's operating systems up to date, and even wiping off your hard drive wherever applicable. Once we get the hang of these practices, it becomes an integral part of our cybersecurity routine whilst using the right tools such as a firewall or wiping software, a password manager, and a high-quality antivirus software.

From an organization's perspective, there are leading practices which help secure the cybersecurity threat landscape, like establishing an incident response plan, implementing security frameworks and standards, and collaborating with security experts.

Tarannum: Thank you for those insights, Rupak. What are the evolving dangers of public Wi-Fi networks?

Rupak: Using Wi-Fi hotspots is very convenient because when we are traveling, working remotely from a hotel or an airport or a restaurant, we do use public Wi-Fis, but there are a number of threats and tremendous risk involved in using public Wi-Fi. These include cybersecurity attacks such as man-in-the-middle attack, unencrypted network, malware distribution, Wi-Fi snooping and sniffing, malicious hotspots, etc. Business owners actually think that they are providing valuable service to their customers, but chances are the security on these public Wi-Fis is lax or nonexistent.

Tarannum: So, how can people stay safe on these public Wi-Fis and what precautions should individuals take when using them?

Rupak: While using a public Wi-Fi, it is best to avoid accessing sensitive information. Checking directions is fine but it is best to wait when paying bills or making a purchase. A great way to minimize the security risk is to add an extra layer of security by using a virtual private network (VPN) bought from a trusted provider to ensure our data is safe.

Sticking to Hypertext Transfer Protocol Secure (HTTPS) websites makes our browsing more secure. If we connect unsecured networks by using Hypertext Transfer Protocol (HTTP) URL, our traffic could be visible to anyone else on the network. Using browser extensions like HTTPS everywhere, we force all websites to connect using a HTTPS. This helps in reducing the risk of ending up on an unsafe website. We can adjust our connection settings by turning off the ‘connect automatically’ feature on our devices, so that they (devices) do not auto connect and search for known Wi-Fi networks. Use a privacy screen to prevent fraudsters from being able to see or photograph any of our information in public areas. Turning off file sharing while accessing over public Wi-Fi is also important, as open file sharing allows the hackers to access our folders without permission. Also, use two-factor authentication to prevent cyber snoops from gaining access to passwords or credentials.

It is critical to keep our operating system up to date with the latest security patches. Most importantly, once we are done with browsing over public Wi-Fi, one should always remember to log out and ‘forget network’ in order to prevent automatic reconnect.

Tarannum: Thank you for touching upon that in such detail, Rupak. What is the impact of poor cyber hygiene and what can firms do to navigate that?

Rupak: The impact of poor cybersecurity hygiene can be profound. It leads to increased vulnerability, data breaches, financial losses, reputational damage, legal and regulatory issues, and a heightened risk of falling victim to cybersecurity attacks. Understanding cybersecurity statistics is essential because it provides tangible insights into the evolving threat landscape, enabling individuals and organizations to make informed decisions, allocate resources effectively, and stay ahead of emerging cyber threats.

In conclusion, cyber hygiene is essential for reducing the risk of cyber threats and protecting digital assets. Poor cybersecurity hygiene can have severe consequences, as evidenced by rising cyber-attack statistics. It underscores the urgent need for better practices, including education, vigilance, proactive security measures, and to defend against evolving cyber threats.

Tarannum: Is there anything else that you would like to add or any final words of advice for our listeners to ensure that they maintain a secure and private digital life?

Rupak: Cybersecurity hygiene is very crucial in today's digital age. Our interconnected world, driven by the internet and digital devices, present both opportunities and risks. Poor cyber hygiene can lead to data breaches, financial losses, and reputational damage. Key elements of cybersecurity hygiene include keeping strong password management, using multi-factor authentication, regular software updates, safe online practices, network security and data backup.

Achieving cyber hygiene requires clear policies employed training and continuous monitoring. By following these best practices, organizations can enhance their cyber security and protect sensitive data. Cyber hygiene is not an option, but a responsibility ensuring a secure digital environment in our ever-connected world.

Tarannum: Thank you so much for joining us and sharing the best practices for a secure digital life. It was lovely hearing from you on this very pertinent topic.

Rupak: Thank you, Tarannum.

Tarannum: Thank you to all our listeners as well. If you have any feedback for today's episode or questions for us, please do feel free to share it on our website or email us at markets.eyindia@in.ey.com. Until next time, I am Tarannum, and this is the Cybersecurity Awareness Month special podcast series by EY India. Thank you for listening in.

Back to podcast

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.

EY | Assurance | Consulting | Strategy and Transactions | Tax

About EY

EY is a global leader in assurance, consulting, strategy and transactions, and tax services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities.

EYG/OC/FEA no.

ED MMYY

This material has been prepared for general informational purposes only and is not intended to be relied upon as accounting, tax, or other professional advice. Please refer to your advisors for specific advice.

Topics

General

People

Back to podcast

Podcast transcript: Cyber hygiene: Best practices for a secure digital life

08 min | 31 October 2023

Back to podcast

Welcome to EY.com

Topics

General

People

Trending

Back to podcast

Podcast transcript: Cyber hygiene: Best practices for a secure digital life

08 min | 31 October 2023

Back to podcast