Investment in building the National Cyber Security Centre’s (NCSC) capacity and addressing cyber security skills gaps are priorities in the midterm review of the National Cyber Security Strategy 2019-2024, which was published on Wednesday.
Minister for the Environment, Climate and Communications Eamon Ryan and Minister of State for the Environment, Climate and Communications, Ossian Smyth, published the review, which set out 18 new strategic actions to be implemented within the lifetime of the strategy.
The midterm review responds to the cyber security skills gap in Ireland and globally, and includes new measures to continue the development of relevant cyber skills to fill skills gaps and support the potential growth of the cyber security industry in Ireland.
A priority action will also see the development of a whole-of-government cyber security industrial strategy to support Ireland’s cyber security industry to achieve its potential, according to the department.
2024 in radio: chaotic exodus of Doireann Garrihy, Jennifer Zamparelli and the 2 Johnnies hangs over 2FM
World Cup 2026 draw: Team-by-team guide to Ireland’s opponents
Polish PM Donald Tusk emerges to take leading role on Ukraine
Stephen Collins: Despite the rhetoric from Mary Lou McDonald, Sinn Féin was the big election loser
Mr Ryan said that security and resilience of the State’s networks and information system is vital “for Ireland’s continued prosperity, our confidence in our public and private services, and our security”.
“Cyber security knows no boundaries and different parts of our economic and social ecosystems are as vulnerable as those in any other country when it comes to cyber threats,” he said. “One important development is that this midterm review expands the focus of the strategy to support a broader range of stakeholders, including educational institutions and SMEs, and redouble our efforts to address the cyber skills gap.”
Mr Ryan added that his officials were leading a cross-Government team to develop a new cyber security industrial strategy.
The review will ensure Ireland plays a full and active part in cyber discussions in the EU and internationally, and is fully prepared to implement the revised EU Network and Information Systems Directive (NIS2) from next year.
Mr Smyth said that excellent progress had been made in implementing the strategy. “This gives me great confidence that we will deliver these measures; that our security, resilience and capacity will continue to grow and strengthen, and that we will safeguard Ireland’s digital transition in the face of cyber security threats.”
The NCSC will establish and lead a national counter-ransomware taskforce to co-ordinate efforts to respond to “severe cyber threat” as part of the 18 strategic actions that span the strategy’s seven thematic areas of focus, among others.
The NCSC will also be provided with the necessary legal authority and technical capabilities to carry out security assessments of ICT systems for the handling of sensitive and confidential data.
In 2021 the HSE suffered a ransomware cyber attack which caused all of its IT systems nationwide to be shut down, and more than 100,000 people had their personal data stolen as a result. The attack is said to have cost the HSE almost €100 million so far, according to a report by the Comptroller and Auditor General released in September, with the figure expected to rise significantly.