The Department implements a security-by-design and defence-in-depth approach to cyber security and has attained the industry security standard ISO27001 certification since 2019. The Department has in place comprehensive arrangements to support ICT security and receives regular advice on these matters from the relevant authorities including the National Cyber Security Centre. For operational and security reasons, the Department has been advised by the National Cyber Security Centre not to disclose details which could, in any way, identify potential vulnerabilities in Departmental Cybersecurity arrangements.