My Department invests on an ongoing basis in traditional, defence-in-depth deployments of preventative controls like firewalls and endpoint protection and advanced threat detection tools. My Department also employs security technology that, together with a dedicated ICT security team and well defined processes, continually monitors the Department’s network and services.
My Department was notified of the attack against the NTMA shortly after the NTMA service was taken offline. The ICT Security team examined the nature of the vulnerability and reviewed all relevant assets to assess the Department’s exposure to the threat. The result of the assessment was that the asset that gave rise to the vulnerability for the NTMA is not in use by any of the Department’s systems and that the Department was and is not at risk from this vulnerability.
My Department will continue to take a proactive approach to securing its network and assets.