"the performance of the Cyber Security Cell"
While I can't legitimately comment on any specifics in this case, as described it illustrates a very important universal point. If you rely for security on a "Cyber Security Cell" you're bound to fail regardless of their expertise. The big (and excessively common) error is to view cybersecurity as a technical domain. In reality it's a governance/management domain with technical facets (albeit numerous ones). If we review almost any major cyber breach incident we find that defective process management is a root cause, as it prevents the technical echelon operating effectively. Relegating 'cybersecurity' to a 'cell' is an extreme implementation of such defective management, as it builds a communication barrier between the business and those trying to protect it from harm. Effective cybersecurity is a joint effort to which both must contribute.