Written answers

Thursday, 30 July 2020

Department of Communications, Climate Action and Environment

Cybersecurity Policy

Photo of Denis NaughtenDenis Naughten (Roscommon-Galway, Independent)
Link to this: Individually | In context | Oireachtas source

161. To ask the Minister for Communications, Climate Action and Environment the steps taken to date to address concerns raised in a report by the Comptroller and Auditor General in 2018 regarding to the National Cyber Security Centre; and if he will make a statement on the matter. [20285/20]

Photo of Eamon RyanEamon Ryan (Dublin Bay South, Green Party)
Link to this: Individually | In context | Oireachtas source

In December 2019 my Department published a new National Cyber Security Strategy which will run until 2024. The objectives of the Strategy are to improve the resilience and security of public sector IT systems to protect data and the services that people rely upon, to improve the ability of the State to respond to and manage cyber security incidents, including those with a national security component, and to identify and protect critical national infrastructure by increasing its resilience to cyber-attack by ensuring that operators of essential services have appropriate incident response plans in place to reduce and manage any disruption to services. In addition, the EU Network and Information Security Directive was transposed into Irish law in September 2018.

The NCSC will also undergo a Capacity Review, commencing this year. The purpose of the review is to undertake an independent assessment of the NCSC’s capacity to deliver its objectives as set out in the Strategy. The review will examine the current organisational structure, staffing, work processes and financing of the NCSC and will aim to benchmark it against international best practice models. The anticipated outcome will be detailed in a report setting out a series of recommendations on future resourcing, skills and structure required to further strengthen the cyber security capacity of the State.

The operation of the NCSC is under ongoing review and additional resources and staff have been secured in order to respond to cyber security incidents and to provide advice and assistance to the stakeholders of the Computer Security Incident Response Team (CSIRT). A formal business plan is in place which sets out objectives, risks and resourcing requirements. The Department engages on an ongoing basis with other EU Member States on cyber issues at a European level and there is ongoing communication between Ireland’s CSIRT and those of other Member States.

Comments

No comments

Log in or join to post a public comment.