Defence Cyber Agency

The Defence Cyber Agency (DCyA) is a tri-service integrated agency of the Indian Armed Forces tasked with handling cyber-security threats to military networks and conducting offensive and defensive cyber operations across the domain. Its creation flowed from the recommendations of the Naresh Chandra Task Force (2012) and the earlier Group of Ministers report (2001), both of which urged the establishment of dedicated commands for emerging warfare domains. The Cabinet Committee on Security approved the agency's formation in 2018, and it was formally raised in 2019 alongside the Defence Space Agency and the Armed Forces Special Operations Division. Unlike a full-fledged unified command, the DCyA was conceived as an interim "agency" structure under the Headquarters Integrated Defence Staff (HQ IDS), with the intent that it could eventually be upgraded to a Cyber Command as Indian doctrine and capability mature.

The agency is headed by a two-star officer designated the Head of the Defence Cyber Agency, a Rear Admiral, Major General, or Air Vice Marshal, with the appointment rotating among the three services. It reports to the Chief of Defence Staff (CDS) through the Chief of Integrated Defence Staff to the Chairman Chiefs of Staff Committee (CISC). Operationally, the DCyA draws personnel from the Army, Navy, and Air Force, integrating cyber units that previously operated in service-specific silos. Its mandate covers the protection of the three services' communication and weapons networks, monitoring of intrusion attempts, coordination of incident response, and the development of offensive cyber tools intended for deployment against adversary military infrastructure during conflict. The agency also formulates cyber doctrine for the armed forces and conducts wargaming and red-teaming exercises.

The DCyA functions through service-level cyber and signals organisations rather than a single monolithic structure. The Army's Corps of Signals, the Navy's network-centric warfare units, and the Air Force's signals and electronic-warfare elements feed capability into the tri-service framework. Each service additionally maintains its own cyber emergency response teams, which coordinate with the central agency. The agency works alongside the Defence Intelligence Agency and the Signals Intelligence Directorate for threat intelligence, and it is expected to interface with national civilian cyber bodies during peacetime defence of dual-use infrastructure. The deliberate choice of an "agency" rather than a "command" reflects both resource constraints and a phased approach: India watched the United States elevate its Cyber Command to a unified combatant command in 2018 and structured the DCyA so that a comparable upgrade remains possible.

Contemporary developments place the DCyA at the centre of New Delhi's military modernisation. In 2024 the Government of India announced approval of three Integrated Theatre Commands, and cyber, space, and special-operations capabilities are slated to be woven into that theaterisation drive championed by the office of the Chief of Defence Staff. The Ministry of Defence has repeatedly cited cyber intrusions attributed to state-linked actors—including campaigns linked to Chinese groups targeting Indian power grids around 2020-2021 and Pakistan-linked phishing operations against defence personnel—as justification for hardening military networks. The DCyA's headquarters functions are situated within the National Capital Region under HQ IDS, and recruitment increasingly emphasises lateral induction of specialist talent given the scarcity of uniformed cyber expertise.

The DCyA must be distinguished from the civilian cyber architecture with which it is frequently conflated. The Indian Computer Emergency Response Team (CERT-In), established under Section 70B of the Information Technology Act, 2000, is the national nodal agency for responding to cyber incidents across the civilian and commercial space and operates under the Ministry of Electronics and Information Technology. The National Critical Information Infrastructure Protection Centre (NCIIPC), created under Section 70A of the same Act and housed under the National Technical Research Organisation, protects designated critical sectors such as power, banking, and telecommunications. The National Cyber Security Coordinator, within the National Security Council Secretariat, coordinates across these bodies. The DCyA's remit, by contrast, is confined to the military domain—armed-forces networks and warfighting operations—though its work necessarily intersects with civilian agencies where critical infrastructure has defence implications.

Several structural debates surround the agency. Analysts and parliamentary committees have argued that an "agency" headed by a two-star officer lacks the authority and resourcing of a true command, limiting its ability to direct offensive operations or compel inter-service coordination. The absence of a publicly articulated national cyber-security strategy—long promised but not formally released—leaves doctrinal questions about thresholds for offensive action, attribution standards, and escalation management unresolved. The blurred line between espionage, sabotage, and armed attack in cyberspace complicates the legal basis for the agency's offensive mandate, particularly given India's positions at the UN Group of Governmental Experts and the Open-Ended Working Group on responsible state behaviour in cyberspace. Questions of civil-military jurisdiction over dual-use networks also remain incompletely settled.

For the working practitioner—whether a defence desk officer, a UPSC aspirant preparing General Studies Paper III internal-security material, or a think-tank analyst tracking the theaterisation reforms—the Defence Cyber Agency represents the institutional core of India's effort to treat cyberspace as an operational military domain. Understanding its subordinate position under the CDS, its distinction from CERT-In and the NCIIPC, and the open question of its eventual upgrade to a Cyber Command is essential to assessing India's posture in an environment where conflicts increasingly open in the digital domain before a shot is fired. The agency's evolution will signal how seriously New Delhi integrates cyber capability into joint warfighting alongside space and conventional forces.