The security of telecommunications networks is, in the first instance, a matter for the telecommunications operators. Under the Communications Regulation Act 2006 as amended, the European Communities (Electronic Communications Networks and Services) (Framework) Regulations 2011 and the European Communities (Electronic Communications Networks and Services) (Privacy and Electronic Communications) Regulations 2011, telecommunications operators are obliged to take “appropriate technical and organisational measures to appropriately manage the risks posed to security of their networks and services.”
The legislation also includes reporting obligations to the relevant regulatory body. This includes the Commission for Communications Regulation and the Data Protection Commissioner.
My Department also has a role in working with telecommunications operators preparing for and managing cyber incidents, through the National Cyber Security Centre.