Publication
National Cyber Risk Assessment 2022
From Department of the Environment, Climate and Communications
Published on
Last updated on
The National Cyber Risk Assessment 2022 report is the final output from the National Risk Assessment process, which was concluded in late 2022, with the assistance of a steering group consisting of members from An Garda Síochána, the Office of Emergency Planning, the Defence Forces, the National Security Analysis Centre, the Central Bank of Ireland, the Commission for Regulation of Utilities (CRU), and the Commission for Communications Regulation (ComReg).
The report examines the systemic cyber risks faced by the State's critical services from a range of threats such as espionage, destructive cyber attacks posed by nation state and criminal actors and hacktivist groups. There are three key recommendations in the report to strengthen the cyber resilience in the State, which have been incorporated into actions following the mid-term review of the National Cyber Security Strategy 2019-2024:
1. Strengthen legislative provisions to ensure that the operators of essential and important services, service providers, and technology vendors embed appropriate cyber security measures in their products and services from the outset
2. Develop a framework to manage strategic supply chain dependency risks for critical and sensitive services
3. Establish a central register of all essential and important entities in the State
