Irish government announces new mandatory cybersecurity requirements
Minister Denis Naughten, TD, has announced important new security requirements for critical national infrastructure in Ireland.
Speaking at the Data Summit yesterday (19 September), Minister for Communications, Climate Action and Environment Denis Naughten, TD, announced important new national cybersecurity requirements.
These will apply to the network and information systems of critical national infrastructure providers in Ireland. These include providers in areas such as energy, digital communications, transport, drinking-water supply and healthcare. The requirements are mandatory principles that all operators of essential services (OES) will have to meet within their organisations.
Cybersecurity protections for vital industries
The requirements have already been subject of a public consultation, and aim to help protect infrastructure against cyberattacks and online threats. Naughten said: “Information technology and digital technology is an integral part of almost all services on which individuals, businesses, families and communities in this State rely.
“Critical national infrastructure such as energy, telecommunications and transport networks, and services such as healthcare, financial services, education, and drinking-water supply and distribution, have been optimised through internet technology, which also increases their vulnerability to cyberattacks.”
The security requirements centre around five themes: identify, protect, detect, respond and recover. Each operator must assess and implement appropriate security measures to address these areas. They need to be aware of sector-specific factors and the identified risks of their own organisation and its environment.
The process of identifying OES has been underway for some time and notification process will commence immediately. The Government has informally notified affected entities of their designation as OES.
Source: Silicone Republic