Léim ar aghaidh chuig an bpríomhábhar
Gnáthamharc

Cyber Security Policy

Dáil Éireann Debate, Wednesday - 6 March 2019

Wednesday, 6 March 2019

Ceisteanna (240, 241, 242, 244, 245)

Jack Chambers

Ceist:

240. Deputy Jack Chambers asked the Minister for Communications, Climate Action and Environment if the Defence Forces or his Department have conducted a national security assessment of technology provided by a company (details supplied); and if he will make a statement on the matter. [11001/19]

Amharc ar fhreagra

Jack Chambers

Ceist:

241. Deputy Jack Chambers asked the Minister for Communications, Climate Action and Environment if Cabinet committee F (National Security) or his Department has conducted a national security assessment of technology services provided by a company (details supplied); and the extent to which the State relies on the company. [11056/19]

Amharc ar fhreagra

Jack Chambers

Ceist:

242. Deputy Jack Chambers asked the Minister for Communications, Climate Action and Environment his plans to order a comprehensive review of structures, capabilities and fusion across all Departments in particular the Departments of Communications, Climate Action and Environment, Justice and Equality and Defence in view of the fact that fundamentally cyber security is a three pronged approach on defence, security and crime; and the way in which overall capabilities are to be developed to address the growing risk to the digital economy. [11057/19]

Amharc ar fhreagra

Jack Chambers

Ceist:

244. Deputy Jack Chambers asked the Minister for Communications, Climate Action and Environment the details of the initial national security assessment by a company (details supplied) to use technology provided by another company in its network; and if he will make a statement on the matter. [11018/19]

Amharc ar fhreagra

Jack Chambers

Ceist:

245. Deputy Jack Chambers asked the Minister for Communications, Climate Action and Environment the reason the response to security queries in relation to a company (details supplied) was to highlight statutory obligations of network operators, the Commission for Communications Regulation responsibility and that State security is primarily a matter for the Minister for Justice and Equality rather than taking responsibility for this risk to the digital economy; his views on whether this is a further admission of a failure to take the threat seriously in view of the recent report into the implementation of the national cyber strategy by the Comptroller and Auditor General; his further views on whether it is exposing the State to unacceptable risk; and if he will make a statement on the matter. [11020/19]

Amharc ar fhreagra

Freagraí scríofa

I propose to take Questions Nos. 240 to 242, inclusive, 244 and 245 together.

The National Cyber Security Centre (NCSC), which is part of my Department, has a number of roles, including leading in the management of major cyber security incidents, providing guidance and advice to citizens and businesses, and to manage cyber security related risks to critical infrastructure and services. Moreover, since the transposition of the EU Network and Information Security Directive, last year, the NCSC has a series of formal powers around securing a range of critical infrastructure, including internet infrastructure.

As the Deputy will be aware, there is also an existing statutory mechanism to deal with the security of telecommunications networks. ComReg has a series of statutory powers flowing from the Electronic Communications Networks and Services Regulations 2011 (S.I. No. 333 of 2011) relating to the Security and Integrity of Telecommunications Networks.

The NCSC also cooperates with a variety of State entities, including the Defence Forces and An Garda Síochána relating to managing risks to critical national infrastructure. The details of this work are obviously not for public release.

My Department is leading in the development of a new National Cyber Security Strategy. Stakeholder Consultations have begun, and a public consultation process will launch shortly. It is envisaged that this Strategy will set out how the State will work and cooperate with key State Agencies, industry partners and international peers in the interests of protecting critical infrastructure, improving situational awareness and incident management, as well as facilitating education, training and public awareness initiatives in respect of cyber security. The public consultation, which will launch shortly, will address these issues in a thematic manner, and will pose a series of questions around how we might better (1) protect critical national Infrastructure and services from Cyber Security related risks, (2) develop our skills base and industrial capacity in this field, and (3) engage nationally and internationally on cyber security matters, both to build awareness and to ensure that our international policy position takes cognisance of developments in cyber security.

Barr
Roinn