I propose to take Questions Nos. 193, 194, 195 and 196 together.
For operational and security reasons, my Department does not disclose specific information relating to cyber security tools, spend, in house expertise and specific strategies employed to counter and combat the threats posed to information security. I am in a position to advise the Deputy that the Department engaged an external consultancy company to perform a cybersecurity audit in 2023 at a cost of €82,656.My Department recognises the importance of maintaining strong cyber security awareness, and ensures staff stay up to date on evolving cyber security threats including malware, phishing attacks and social engineering deception schemes. All staff are provided with training guidance on cyber security at induction and updates on new threats and how to mitigate these. Finally, the Office of the Government Chief Information Officer, which is a Division of my Department, works closely with the National Cyber Security Centre, which is a Division of the Department of Communications, Climate Action and Environment, and encompasses the State's national/governmental Computer Security Incident Response Team. CSIRT-IE is an internationally accredited response team focusing on enhancing both situational awareness and providing incident response for national cyber security incidents (including ransomware attack).