Skip to main content
Normal View

Cybersecurity Policy

Dáil Éireann Debate, Thursday - 7 April 2022

Thursday, 7 April 2022

Questions (200)

Cathal Berry

Question:

200. Deputy Cathal Berry asked the Minister for the Environment, Climate and Communications the measures that he has taken to enhance Ireland’s cyber-security for the next 12 months; and if he will make a statement on the matter. [19072/22]

View answer

Written answers

The measures to be taken by my Department to protect and mitigate against cyber security incidents are guided by the National Cyber Security Strategy 2019-2024. The Strategy is a whole-of-Government strategy to address the growing threat of cyber security incidents, to ensure Ireland can benefit fully from the digital transformation. The Strategy includes 20 separate measures to safeguard public sector networks and essential services, to support the development of Ireland's cyber security industry, and to ensure we play our part in defending a free, open, secure and stable cyberspace. Over the coming year, the National Cyber Security Centre (NCSC) will continue to work with Government departments, critical national infrastructure, and other relevant stakeholders to implement these measures in line with the timelines set out in the Strategy. Progress on delivery is monitored by an Inter-Departmental Committee (IDC) which meets quarterly. As part of the implementation of the Strategy, in 2021 external consultants were commissioned to conduct a Capacity Review and to benchmark the NCSC with similar agencies in Europe and internationally. On foot of the Review, in July the Government agreed a number of measures to support the continued development of the NCSC over the coming five years. The measures agreed include increasing the overall fulltime staffing complement of the NCSC to at least 70 over the next 5 years, with a first tranche of an additional 20 staff recruited by the end of the year bringing the serving complement to 45. A dedicated HQ facility will also be developed at my Department’s future HQ in Dublin 4. In addition, the General Scheme of a Bill will be prepared for Government approval to establish the NCSC on a statutory basis and provide for related matters including clarity around its mandate. A set of priority actions have been identified for 2022 and progress will be monitored by the IDC on the National Cyber Security Strategy.

The Government has also identified the need to implement new measures to enhance the security of digital communications networks such as 5G networks. Following a public consultation on a set of Electronic Security Control Measures (ECSMs) earlier this year, legislation is being drafted to establish a legal framework for these vital controls. In addition, my Department is engaging with partners across Government to draft legislation to address the challenge of High Risk Vendors supplying 5G technology which I expect to be published later this year.

Recognising the priority which the EU and its institutions affords to cyber security, Ireland will continue to play an active role in European Council discussions on EU cyber security strategy and legislation. The ongoing review of the Network and Information Security Directive is a major pillar of the EU’s cyber security strategy and will have far-reaching implications for public bodies, essential infrastructure, and businesses, including digital service providers. My Department will continue to coordinate Irish policy positions on this and other matters including the Joint Cyber Unit initiative and the European Commission’s forthcoming proposal for a Cyber Resilience Act. My officials will also continue to engage and share information with counterparts across the EU through the NIS Cooperation Group, the CSIRTs Network, and the CyCLONe Network.

Finally, building on the success of recent campaigns, the NCSC will roll out a public awareness programme in October to coincide with European Cyber Security Month. The NCSC will work with the EU cybersecurity agency ENISA, partner organisations across the Union, as well as national partners including the Garda Cyber Crime Bureau to deliver an impactful and informative campaign to raise awareness of cyber security in businesses, educational institutions and at home.

Top
Share