Ireland – IT services: consulting, software development, Internet and support – 9565 Cyber Security GAP Assessment

Cybersecurity maturity has previously been assessed annually against the NIST CSF v1.0 framework. There is now a requirement to move to NIST CSF v2.0 and a decision has been made to use external support to do this. This will be the second year that this assessment has been carried out externally. NIS2 regulations set the baseline for cybersecurity risk management measures and reporting obligations across all sectors that are covered by the directive, such as energy, transport, health, and digital infrastructure. The CIÉ Group is seeking assurance that they have the necessary measures in place to comply with NIS2.