Brendan Howlin (Wexford, Labour)
Link to this: Individually | In context | Oireachtas source

I thank Mr. Lepassaar. If I may, I would like to pose a couple of questions. We are looking at the impact of the cyberattack on our health system, which literally not only cost enormous sums of money, but cost lives, and at how we can make ourselves more resilient. I am taken by Mr. Lepassaar's observation that Germany has a legal obligation on some actors to invest a percentage of its IT budget in cybersecurity. In Mr. Lepassaar's view, is that a model that should have general application across all states and public agencies and is 10%, which is the figure mentioned by him in regard to Germany, the optimum or what other figure should we be looking at for legislation?

My second question relates to a response to external actors, non-EU actors, in that regard. Mr. Lepassaar said there is a capacity for response. Bluntly, it is not very visible. We have suffered a major attack. Is it possible to identify the location of the attacker in these matters? What sort of response is available to dissuade future attacks?