IT.ie expands Irish operations with seven-figure acquisition of Abacus Systems
- Acquisition reinforces IT.ie as a leading player within Ireland’s growing managed IT service provider and cybersecurity market
- Expected revenues will now exceed previous target of €8M, reaching €10M by year-end
- The acquisition will see the IT.ie team grow to more than 50
- Dublin-based company will expand its customer base by over 50% to 500+ clients
- Acquisition was self-funded by IT.ie, reflecting the company’s financial strength and ambitious plans for growth
Dublin, 18th June 2025: IT.ie, a leading Irish managed IT services company, today announces that it has acquired Abacus Systems, a South-Dublin based managed IT service provider, in a seven-figure deal. Following the acquisition, the company is forecasting revenues to exceed its previous target of €8M, reaching €10M by year-end 2025. Its workforce, meanwhile, will grow to a team of more than 50.
The strategic move reinforces IT.ie as a leading player within the managed IT service provider and cybersecurity market, bolstering its existing expertise and enabling the company to offer a broader range of industry-leading systems and solutions. IT.ie will continue its commitment to providing exceptional customer service as its customer base grows by 50% to more than 500 clients.
Established in 1992, Abacus Systems brings over three decades of experience delivering trusted IT services, combining technical expertise with a client-focused approach. As a long-term technology partner to corporates, public sector organisations, healthcare providers, and SMEs across Ireland, the company works consultatively with clients to align technology solutions, such as managed services, cloud technologies, cybersecurity, and compliance with their business goals, supporting each organisation’s growth and long-term success.
The acquisition was independent of private equity, and was self-funded by IT.ie, reflecting the company’s financial strength and independence.
Eamon Gallagher, Founder and Managing Director of IT.ie, said: “The acquisition of Abacus Systems marks a key moment in our success and is another milestone in our journey to becoming a leading force in the managed IT services space. It firmly strengthens our position within the market, allowing us to offer an even greater portfolio of services and deeper expertise to facilitate our growing customer base.
“The acquisition unites two companies built with the same core values. For us, the partnership goes beyond growth and is an opportunity to learn from one another and build on our existing expertise together. Our customers will receive the same exceptional customer service that they are used to, with the added bonus of expanded service offerings, deeper industry knowledge, and even more solutions tailored to meet their individual needs. Above all else, the success of our clients remains our top priority, and the acquisition of Abacus systems sets out to facilitate this further.”
Derek O’Callaghan, Managing Director of the Abacus Division, said: “This acquisition isn’t just great news for our business, but also our customers. Regardless of size, every business needs to be a resilient, digital enterprise and we are proud to have joined forces with IT.ie to work as one team in delivering this for combined customer base. In terms of services and our cultures, we complement each other and are excited to be on this journey together.
“IT is becoming more complex and that is likely to see more pooling of resources of this kind. The IT industry is consolidating and getting stronger, and we are bringing that strength to our customers.”
ENDS
About IT.ie
Established in 2004 by Eamon Gallagher, IT.ie has built a reputation for delivering Managed IT Services to businesses that expect more from their technology partners. Renowned for their exceptional customer experience, IT.ie combines proactive support with industry-leading customer service. With a commitment to providing secure, innovative solutions, IT.ie is recognised as the trusted provider of Managed IT Services, Cloud Solutions, and Cyber Security, to organisations throughout Ireland.
About Abacus Systems:
Founded in 1992 by Derek O’Sullivan, Abacus Systems delivers trusted IT services to a range of corporate, public sector organisations, healthcare providers and SMEs across Ireland. The company collaborates closely with clients to align technology solutions, such as managed services, cloud technologies, cybersecurity, and compliance, with their business goals, supporting each organisation’s growth and long-term success.
The Key EU Cybersecurity Regulations to Know in 2025
NIS2 Directive
Adopted: 27 December 2022
Transposition deadline: 17 October 2024
Status in Ireland: Missed transposition deadline – legislation still pending as of June 2025
NIS2 sets strict cybersecurity and incident reporting obligations for essential and important entities, including digital service providers, healthcare, utilities, and MSPs. It significantly broadens the scope compared to the original NIS Directive.
Ireland has not yet transposed NIS2 into national law, despite the deadline having passed in October 2024. A draft bill is expected soon, but enforcement remains in limbo. However, businesses falling under the scope should already be preparing. Once enacted, Irish authorities are likely to move swiftly with implementation and oversight.
Cyber Resilience Act (CRA)
Expected adoption: Q3 2024
Applies from: Likely Q3–Q4 2026 (24 months after adoption)
Status in Ireland: Will apply automatically as an EU regulation
The CRA imposes mandatory cybersecurity requirements for digital products (e.g. software, smart devices) sold in the EU. It introduces vulnerability handling processes, secure-by-design principles, and ongoing update obligations.
Irish manufacturers, distributors, and importers should be reviewing their product security practices now—especially if they serve regulated industries or export into the EU market.
DORA (Digital Operational Resilience Act)
In force since: 16 January 2023
Applies from: 17 January 2025
Status in Ireland: Fully applicable as of this year
DORA sets operational resilience standards for financial entities, including banks, insurers, fintech firms, and their ICT third-party providers. It mandates risk assessments, testing, reporting, and resilience planning.
DORA is now active. Irish firms regulated by the Central Bank must be fully compliant as of January 2025. If your organisation provides services to the financial sector, expect DORA-aligned security and resilience requirements in contracts.
CER Directive (Critical Entities Resilience)
Adopted: December 2022
Transposition deadline: 10 October 2024
Status in Ireland: Still not transposed as of June 2025
CER complements NIS2 by addressing the physical resilience of critical infrastructure providers. It covers sectors like energy, water, health, and public transport, requiring risk assessments, threat modelling, and protection plans.
Ireland has missed the transposition deadline. However, organisations in critical sectors are strongly advised to prepare for CER-like obligations, especially where overlaps with NIS2 and EU strategies already exist.
EU Cybersecurity Act
In force since: June 2019
Status in Ireland: Directly applicable EU regulation
The Cybersecurity Act provides a voluntary certification framework for ICT products, services, and processes. While not mandatory, it gives assurance of robust cybersecurity standards.
Irish IT providers can seek EU cybersecurity certification as a trust signal, particularly valuable when working with public sector or regulated customers.
GDPR (General Data Protection Regulation)
In force since: 25 May 2018
Status in Ireland: Transposed via Data Protection Act 2018
GDPR continues to require strong technical and organisational measures to protect personal data. Breach reporting, data minimisation, and secure processing remain core pillars.
Ireland’s Data Protection Commission (DPC) remains one of the EU’s most active regulators due to the number of multinational HQs here.
Cyber Solidarity Act
Expected adoption: Late 2025 or early 2026
Applies from: TBD (will be an EU Regulation)
Status in Ireland: Not yet in force
The Cyber Solidarity Act will provide an EU-wide cyber emergency response framework, including threat intelligence sharing, joint incident response, and crisis preparedness.
Ireland is expected to participate via its national CERT and cybersecurity bodies. Organisations in key sectors may later benefit from access to shared tools or support during pan-European cyber incidents.
EU Cybersecurity Strategy
Published: December 2020
Status: Strategic roadmap (non-legally binding)
This overarching framework guides the EU’s legislative agenda and shapes national cybersecurity priorities.
Ireland’s National Cyber Security Strategy is closely aligned with the EU vision, with ongoing investment in threat intelligence, critical infrastructure protection, and digital sovereignty.
Why Irish Businesses Must Take Action in 2025
Network Security
Many of these regulations are already active—or overdue. For Irish businesses, this creates a risk of:
- Compliance breaches with potential penalties of €10M+
- Contractual pressure from clients enforcing EU standards
- Operational exposure due to delayed preparation
- Regulatory surprise when Irish enforcement begins post-transposition
Why Partnering with an ISO 27001:2023 Certified MSP Matters
Achieving compliance for some of these regulations such s NIS2 can be complex, particularly for SMBs that may lack the internal resources to manage the extensive requirements. Partnering with an ISO 27001:2023 certified MSP like IT.ie offers significant advantages. While we provide the expertise, tools, and services necessary to implement and maintain a multi-layered cybersecurity strategy, the ultimate responsibility for achieving and maintaining compliance rests with your organisation. Our role is to support you by offering solutions that align with the directive’s requirements, helping you to build a resilient security posture. However, it’s important to understand that compliance is a continuous process that requires your organisation’s commitment to regularly assess, update, and manage its cybersecurity measures in accordance with the relevant regulations.
Start Preparing Today
Even if some laws haven’t been enforced in Ireland yet—your clients, partners, and regulators are already expecting action. Get in touch with us at hello@it.ie to see how we can support your cybersecurity journey.
