NSE IPO: Exchange Flags Regulatory, Tech and AI Risks in Draft Papers

The National Stock Exchange (NSE) has released its draft red herring prospectus (DRHP) ahead of its massive ₹30,000 crore public issue, which is poised to be India's largest-ever IPO. While outlining its growth potential, the exchange has proactively disclosed significant operational, regulatory, and emerging technological risks that could impact its future profitability.

High Reliance on Derivatives and Concentration Risks

A critical takeaway from the NSE's filing is its heavy dependence on derivatives trading for revenue generation. In FY26, transaction charges accounted for 78.65% of the exchange's operating revenue, with options trading alone contributing a massive 60.22% of total revenue from operations.

This concentration poses a structural risk, especially as the Securities and Exchange Board of India (SEBI) continues to tighten the equity derivatives framework. The exchange noted that recent regulatory measures have already moderated trading activity across both cash and derivatives segments. Furthermore, NSE faces "concentration risk" from its client base, as its top 10 trading members accounted for 46.78% of its operating revenue in FY26.

The DRHP highlights a history of intensive regulatory oversight. NSE disclosed that it has received various show-cause notices, warning letters, and deficiency letters from SEBI concerning operations, governance, and compliance.

Financial implications of these regulatory hurdles are already evident. The exchange disclosed paying over ₹643 crore in October 2024 to settle proceedings related to its Trading Access Point (TAP) architecture and network connectivity. Additionally, ₹40.35 crore was paid in July 2025 under a settlement order following regulatory inspections. Unresolved legal proceedings regarding co-location and dark fibre matters also remain a potential reputational and financial threat.

Technological Vulnerabilities and Cybersecurity Threats

As a fully electronic ecosystem, NSE identified technology outages and cyberattacks as primary operational risks. The exchange specifically recalled the February 2021 technical outage that caused a market-wide trading halt for over five hours.

Keamanan siber tetap menjadi medan pertempuran yang konstan; bursa tersebut mengungkapkan bahwa pada Mei 2025, situs webnya terkena serangan Distributed Denial-of-Service (DDoS) besar-besaran yang melibatkan sekitar 395 juta hit dalam waktu hanya 11 menit. Meskipun operasional sebagian besar tetap berjalan lancar, insiden tersebut menyebabkan perlambatan signifikan dalam akses halaman web.

Batas Baru yang Muncul: Risiko Kecerdasan Buatan

Dalam pengungkapan yang berorientasi ke masa depan, NSE mengidentifikasi Kecerdasan Buatan (AI) sebagai pedang bermata dua. Meskipun AI meningkatkan pengawasan dan analitik, bursa tersebut memperingatkan bahwa algoritma yang cacat atau kualitas data yang buruk dapat menyebabkan hasil yang bias dan pelanggaran regulasi.

Bursa tersebut secara khusus menandai bahwa kebangkitan perdagangan algoritmik berbasis AI dapat memperkuat volatilitas pasar dan menciptakan bentuk manipulasi pasar yang canggih. Selain itu, NSE memperingatkan terhadap ancaman era baru seperti serangan siber bertenaga AI, penyamaran yang dimungkinkan oleh deepfake, dan kebocoran data melalui alat AI pihak ketiga.

Poin-Poin Penting

  • Konsentrasi Pendapatan: NSE sangat bergantung pada derivatif, dengan perdagangan opsi saja menyumbang lebih dari 60% dari total pendapatan operasionalnya.
  • Beban Regulasi: Bursa tersebut telah menghadapi penalti finansial yang signifikan, termasuk penyelesaian sebesar ₹643 crore, dan tetap berada di bawah pengawasan berkelanjutan dari SEBI.
  • Ancaman Teknologi & AI: Selain keamanan siber tradisional dan gangguan layanan, volatilitas pasar yang didorong oleh AI serta serangan siber canggih bertenaga AI diidentifikasi sebagai risiko utama yang muncul.