I propose to take Questions Nos. 146, 147, 148 and 149 together.
Cyber security awareness training is provided to all staff within the Department of Transport on a regular basis. We have significantly increased our cyber security capabilities within the Department over the past three years, by a combination of internal staff training and engaging third parties with specialist security skillsets. The Department cannot disclose details of ongoing contracts with cybersecurity firms due to confidentiality agreements.
The Department has comprehensive cybersecurity policies and business continuity plans in place to address ransomware attacks. Most of the Department's IT footprint is certified under ISO22301, which remains valid until July 2025 on condition that the approved Business Continuity Management Standard is maintained in an adequate and efficacious manner. Additionally, a well-defined incident response strategy helps to swiftly restore the Department's IT systems in case of an attack.