#3048730
Ag tabhairt dá haire gur lean cibearchoirpigh agus haiceálaithe cúise ar aghaidh ag ionsaí an Lárionaid in 2021, agus, mar fhreagairt air sin, gur chuir an Lárionad bearta cibearshlándála breise chun feidhme, amhail Microsoft Defender, uirlisí fóiréinseacha le haghaidh anailís dhomhain, córas bainistíochta slándála faisnéise agus bainistiú na rochtana pribhléidí/na céannachta; ag tabhairt dá haire go bhfuil beartas cibearshlándála cruthaithe ag an Lárionad agus go bhfuil méadú tagtha freisin ar a fhoireann slándála TF agus ag tabhairt dá haire, thairis sin, go raibh an t-ionad i mbun údarás slándála a bhunú; á iarraidh ar an Lárionad cloí leis na moltaí a rinne an Chúirt i dtuarascáil speisialta uaithi maidir le Cibearshlándáil institiúidí, chomhlachtaí agus ghníomhaireachtaí an Aontais (EUIBAnna), ina n-iarrann an Chúirt ar EUIBAnna creat bainistíochta riosca maidir le slándáil TF a bheith acu lena gcumhdófar a mbonneagar TF ina iomláine agus measúnuithe riosca rialta a dhéanamh, agus oiliúint chórasach feasachta a sholáthar do gach ball foirne, lena n-áirítear an bhainistíocht; á chur in iúl gur geal léi, sa chomhthéacs sin, an beartas cibearshlándála a glacadh le déanaí lena gcumhdaítear gach gné a bhaineann le riachtanais agus mianta gnó, le scileanna agus feasacht daoine agus le slándáil theicniúil; á iarraidh ar an Lárionad aon fhorbairt ina leith sin a thuairisciú don údarás um urscaoileadh;
Notes that, in 2021, the Centre continued to be attacked by cybercriminals and hacktivists, and that in response the Centre implemented additional cyber-security measures, such as Microsoft Defender, forensic tools for deep analysis, an information security management system and privilege access/identity management; notes that the Centre has created a cybersecurity policy and also increased its IT security staffing and notes, furthermore, that the Centre was in the process of setting up a security authority; calls on the Centre to follow the recommendations made by the Court in its special report on Cybersecurity of EU institutions, bodies and agencies (EUIBAs), in which the Court asks EUIBAs to have an IT security risk management framework covering the entirety of their IT infrastructure and carry out regular risk assessments, and to provide systematic awareness training for all staff, including management; in this context welcomes the recently adopted cybersecurity policy covering all aspects from business needs and wants, to people skills and awareness and to technical security; calls on the Centre to report to the discharge authority on any developments in that regard;