Cybersecurity Policy

The National Cyber Security Centre (NCSC), which is a unit of my Department, has been engaged in a series of actions around assisting Government Departments and State Agencies in preserving the security of their networks and data since its establishment in 2011. The NCSC engages with national and international stakeholders, gathering information and  acting as a conduit for sharing this with constituents including operators of Critical National Infrastructure (including electricity and water infrastructure), businesses, and Government Departments and Agencies. The NCSC also provides expert advice and analysis on cyber security related issues and coordinates responses to significant incidents. This involves collating and analysing data from cyber-attacks and coordinating with those targeted to introduce mitigation measures. As such, the NCSC continues to work with utility operators and with similar bodies in other jurisdictions to ensure that risks to infrastructure in Ireland are managed appropriately, including the active management of ongoing issues. The unit also participates in international Cyber Security training exercises, including a pan European exercise on 6-7 June 2018. The NCSC is also home to the national Computer Security Incident Response Team (CSIRT-IE) which has received international accreditation and plays an active role in a number of European and international organisations. The NCSC has been heavily engaged in work to prepare for implementation of the EU Network and Information Security Directive, which places binding security requirements on critical infrastructure operators and certain key Digital Service Providers. These requirements, which will be legally enforceable, involve a series of technical measures that operators will have to take to secure their systems and to be able to react in the case of an incident. They will also be obliged to report any serious incidents to the NCSC, which will assist in both national and EU level incident response.