Google Cloud Expands Government Cybersecurity Partnerships in India
Google Cloud’s security division is deepening its collaboration with Indian government entities as states plan dedicated cybersecurity operations centers (SOCs) and structured threat intelligence partnerships.
Key Developments
- Government departments exploring dedicated cybersecurity operations centers
- New Deloitte partnership paper on state-level cyber shielding
- Increased focus on DPDP Act compliance requirements
- Growing demand for unified multi-cloud security solutions
Public Sector Engagement
According to Jyoti Prakash, Head of Security – Google Cloud, India & Saarc countries, the company has been actively working with both central and state departments. “The movement has not been as fast as we have expected, but cloud adoption from government side is a complex exercise,” he told FE, noting that large-scale digitisation must balance efficiency gains with national security sensitivities.
DPDP Act Implementation Challenges
Enterprises across India are intensifying discussions around the Digital Personal Data Protection (DPDP) Act compliance. Prakash emphasized that companies are focusing more on operationalizing the law’s requirements rather than purchasing new tools.
“Product and tools will become very incidental. The DPDP framework needs to be viewed through the lens of outcomes rather than point solutions.”
With requirements including encryption, masking, tokenization, strict access controls, and the 72-hour breach notification rule, organizations are prioritizing monitoring depth, data visibility, and timely threat detection.
Scale Emerges as Critical Challenge
Prakash highlighted that the primary challenge for enterprises is maintaining continuous monitoring of high-volume data flows while identifying anomalies and generating timely alerts. “Only once you know (of a security incident), can you go to the data protection board within 72 hours,” he explained.
Enterprise Digital Transformation Needs
Beyond DPDP compliance, Google Cloud is working with large conglomerates spanning multiple sectors and subsidiaries. These organizations require sector-specific use cases, domain expertise, and advisory support alongside technology solutions. The company has been conducting compromise assessments, incident-response assistance, and consulting engagements across these enterprises.
Digital Natives vs Legacy Enterprises
A clear divergence exists between digital-first companies and traditional conglomerates. While digital natives have advanced cloud adoption and focus on securing AI-driven attack surfaces, legacy organizations need deeper domain alignment, process redesign, and standardization across business units.
Multi-Cloud Security Complexity
Organizations using multiple cloud platforms are increasingly demanding unified security postures as misconfigurations and cloud-origin vulnerabilities rise. Prakash revealed that “more than 60% of the risk and vulnerability that we are seeing is coming out of the cloud,” underscoring the need for consolidated security approaches as data processing scales continue to grow.
