CPCSC5 min read
What is CPCSC and who needs it
CPCSC is Canada's mandatory cybersecurity standard for defence suppliers. Learn who needs it, what the three certification levels require, and when the deadlines hit.
Resources
Guides for Canadian businesses navigating cybersecurity and compliance.
Practical answers to the questions we hear most: CPCSC requirements, PIPEDA obligations for businesses with contractors, CCCS controls, Zero Trust architecture, and what managed security actually looks like.
CPCSC5 min read
CPCSC Level 1 vs Level 2: what defence suppliers need to know
CPCSC Level 1 and Level 2 share the same framework but differ in scope, verification, and cost. Here's a plain-language comparison to help you understand what each level actually requires.
Privacy and Compliance6 min read
PIPEDA compliance checklist for Canadian SMBs with contractors
PIPEDA applies to any Canadian business that collects personal information. For businesses using contractors, compliance is harder than most owners realize. This checklist covers what you need to have in place.
Cybersecurity5 min read
What are the CCCS Baseline Controls?
The Canadian Centre for Cyber Security publishes 13 baseline controls that define the minimum cybersecurity posture every Canadian organization should maintain. Here's what each control covers and what it takes to implement.
Cybersecurity5 min read
What is managed security services and do you need an MSSP?
A managed security service provider (MSSP) runs your security operations on your behalf. For most mid-market Canadian companies, an MSSP is more cost-effective and more capable than building in-house. Here's what you get and how to decide.
Cybersecurity6 min read
Zero Trust explained for mid-market businesses
Zero Trust is a security model built on verified access rather than perimeter trust. For mid-market businesses, it's the most effective framework for modern threats. Here's what it means in practice and where to start.
CPCSC5 min read
How long does CPCSC Level 2 preparation take?
CPCSC Level 2 preparation typically takes three to six months, depending on your starting posture. Here's a realistic breakdown of each phase and what drives the timeline.
Workforce IT Governance5 min read
Workforce IT governance: what Canadian SMBs miss
Most Canadian SMBs are exposed in ways they have not mapped, whether they hire full-time staff, remote workers, or contractors. Here is what is typically missing and what the compliance consequences are.
Workforce IT Governance6 min read
The week you lose every time you hire someone
Every time a Canadian business brings someone on, a week disappears into IT logistics. Here is what that cycle costs and what it looks like when it stops.