Investment in building the National Cyber Security Centre’s (NCSC) capacity and addressing cyber security skills gaps are priorities in the midterm review of the National Cyber Security Strategy 2019-2024, which was published on Wednesday.
Minister for the Environment, Climate and Communications Eamon Ryan and Minister of State for the Environment, Climate and Communications, Ossian Smyth, published the review, which set out 18 new strategic actions to be implemented within the lifetime of the strategy.
The midterm review responds to the cyber security skills gap in Ireland and globally, and includes new measures to continue the development of relevant cyber skills to fill skills gaps and support the potential growth of the cyber security industry in Ireland.
A priority action will also see the development of a whole-of-government cyber security industrial strategy to support Ireland’s cyber security industry to achieve its potential, according to the department.
Markets in Vienna or Christmas at The Shelbourne? 10 holiday escapes over the festive season
Stealth sackings: why do employers fire staff for minor misdemeanours?
Michael Harding: I went to the cinema to see Small Things Like These. By the time I emerged I had concluded the film was crap
Look inside: 1950s bungalow transformed into modern five-bed home in Greystones for €1.15m
Mr Ryan said that security and resilience of the State’s networks and information system is vital “for Ireland’s continued prosperity, our confidence in our public and private services, and our security”.
“Cyber security knows no boundaries and different parts of our economic and social ecosystems are as vulnerable as those in any other country when it comes to cyber threats,” he said. “One important development is that this midterm review expands the focus of the strategy to support a broader range of stakeholders, including educational institutions and SMEs, and redouble our efforts to address the cyber skills gap.”
Mr Ryan added that his officials were leading a cross-Government team to develop a new cyber security industrial strategy.
The review will ensure Ireland plays a full and active part in cyber discussions in the EU and internationally, and is fully prepared to implement the revised EU Network and Information Systems Directive (NIS2) from next year.
Mr Smyth said that excellent progress had been made in implementing the strategy. “This gives me great confidence that we will deliver these measures; that our security, resilience and capacity will continue to grow and strengthen, and that we will safeguard Ireland’s digital transition in the face of cyber security threats.”
The NCSC will establish and lead a national counter-ransomware taskforce to co-ordinate efforts to respond to “severe cyber threat” as part of the 18 strategic actions that span the strategy’s seven thematic areas of focus, among others.
The NCSC will also be provided with the necessary legal authority and technical capabilities to carry out security assessments of ICT systems for the handling of sensitive and confidential data.
In 2021 the HSE suffered a ransomware cyber attack which caused all of its IT systems nationwide to be shut down, and more than 100,000 people had their personal data stolen as a result. The attack is said to have cost the HSE almost €100 million so far, according to a report by the Comptroller and Auditor General released in September, with the figure expected to rise significantly.