For reasons of operational and national security it would not be appropriate to disclose details of my Department’s Cyber Security arrangements, or those of State Agencies under my remit. Any information in relation to cyber security tools and services could assist criminals in identifying potential vulnerabilities in cybersecurity arrangements. Therefore it is not considered appropriate to disclose any such information or make comment which could in any way compromise my Department’s Cyber Security.
My Department has developed an Information Security Management System (ISMS) aligned with the industry security standard ISO27001. This ISMS provides an overall governance framework for information security and ensures continual upgrade and improvement of its IT systems.