Cyber attacks can have a direct impact on your organization and customers, which can result in financial losses and reputational damage.
CyberSecure Canada is a voluntary federal certification program designed for small and medium-sized enterprises and other organizations in Canada to help improve cybersecurity practices, promote trust and provide a competitive advantage that will result in increased consumer confidence in the Canadian digital economy.
Many of the business owners we speak to are concerned and even afraid of the threats posed by hackers and cyberthreats, but don’t know where to start! That’s why we have developed a cybersecurity initiative to help our local businesses get Cybersecure Canada certification-ready.
Through this initiative, participants can access up to $5,000 worth of services from onserve. Our goal is to help you attain the Cybersecure certification offered through the canadian government.
Cybersecure Canada is a voluntary federal certification program designed for small and medium sized organizations in canada to help improve cybersecurity practices, promote trust, and provide a competitive advantage that will result in increased consumer confidence in the canadian digital economy.
- IT Security Assessment performed by the experts at OnServe
- IT Roadmap for securing your technology
- IT Security consulting to help you implement necessary changes
- Access to OnServe’s security management program for two months
What does it cost?
- This is a fully-funded initiative thanks to support from FedDev and the Province of Ontario
- Some security changes may require the purchase of additional hardware or software. These costs are the responsibility of program participants
- Your personal commitment to make changes and an ongoing commitment to stay secure.
- Sleep better at night knowing your business is secure!
- Protection for private and sensitive data.
- Reduce the likelihood of becoming a target from hackers and cyber threats.
- Information and training for you and your team
- Certification that demonstrates your commitment to protecting your customers’ interests and data.
Building trust with customers, partners, investors and suppliers
Once your organization is certified, the Government of Canada will provide you with a CyberSecure Canada certification mark, valid for two years, that you can display on your website and in your place of operation to let your customers, investors, partners and suppliers know that you have taken action to protect your organization from cyber threats.
To be eligible for certification, your organization must review and implement the 13 security controls established by the Canadian Centre for Cyber Security:
- Develop an incident response plan
- Automatically patch operating systems and applications
- Securely configure devices
- Enable security software
- Use strong user authentication
- Provide employee awareness training
- Back up and encrypt data
- Secure mobility
- Establish basic perimeter defences
- Secure cloud and outsourced IT services
- Secure websites
- Implement access control and authorization
- Secure portable medi
These security controls provide a solid foundation that will help your organization mitigate cyber threats. Visit canada.ca/CyberSecure for information and e-learning tools to help you implement the security controls for your organization.
Once your organization has implemented the 13 security controls, you can apply for certification at canada.ca/CyberSecure.
A certification body (accredited through the Standards Council of Canada) will evaluate your implementation of the 13 security controls.
The certification body will consult directly with your organization to:
- Determine if your organization is ready to be certified;
- Provide a cost estimate for your organization to achieve CyberSecure Canada certification; and
- Audit your organization’s implementation of the security controls