Cybersecurity, IT compliance and risk

Led by Richard Dunne, Deputy Head of Technology Services, this function encompasses two distinct teams, Information Security Operations and Architecture and Information Security Governance, Risk and Compliance.

With the evolving and ever-present cyber security threat that the university faces and the even higher dependency on connectivity and digital infrastructure due to the rise in remote and hybrid working scenarios we have seen increases in the opportunities for cyber intrusion and attacks. Therefore, it is essential to enhance the cyber security capabilities and resilience of the university.

Information Security Operations and Architecture

This team is responsible for proactively defending TU Dublin's digital assets and reducing the risk of significant security incidents and data breaches. Their work is grounded in the NIST Cybersecurity Framework, which provides a structured approach to protecting critical infrastructure. 

Key responsibilities include:

• Developing, deploying, and managing cyber security threat monitoring, detection, and response systems.
• Using business drivers to guide cyber security activities and consider cyber security risks as part of the organization’s risk management processes.
• Apply the principles and best practices of risk management to improve the security and resilience of all IT systems across the University and ensure that robust IT Security is inherent in the design.
• Leading and coordinating cyber security Incident responses, to ensure a swift and effective response to cyber security Incidents should they occur.

This team is the technical backbone of TU Dublin's cyber defence strategy, ensuring that security is not just reactive but embedded into every layer of the university's digital ecosystem.

 

Information Security Governance, Risk and Compliance (ISGRC)

This team uses formal frameworks that provide a structure to ensure TU Dublin’s IT investment supports our business needs and enables the University to achieve its goals.

Key responsibilities include:

• Developing and maintaining the Universities IT Security, Risk and Compliance policies and ensuring the University remains informed and compliant on all regulatory and licensing requirements, as per university and sectoral requirements.
• Provide IT Security advice and guidance to the University community and actively participate in sectoral wide cyber security initiatives & Steering groups.
• Conduct cyber security risk assessments of all Enterprise Systems, ensuring security by design for all IT Systems.
• Manage and maintain the IT Risk Register and work with key stakeholders to eliminate or reduce IT Risks.
• Ensuring alignment with national and international standards (e.g. ISO/IEC 27001, GDPR, NIST)

Together, these teams form a unified cyber security capability that is both technically robust and strategically aligned. They are central to TU Dublin's commitment to delivering secure, reliable, and forward looking digital services in support of academic excellence and operational integrity.