Threat Level: green Handler on Duty: Bojan Zdrnja

SANS ISC: Canada's Cyber Security Strategy released today - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Canada's Cyber Security Strategy released today

Public Safety Canada released their version of a Cyber Security Strategy today. My first impression is that the document is a good start, albeit a bit late. It does demonstrate that the government is trying to show leadership in this area, which is a good thing. What the strategy document lacks is the pragmatic plan and specific steps required to implement it. The document will also serve as the report card for Canadians to evaluate the progress of the various departments that currently handle aspects of cyber security within the levels of government. Particularly Public Safety. In twelve months from now all of the items in their strategy should be reality. Each of the three primary areas the strategy covers are equally important in the long term, and require a significant investment in time, funding, cooperation, partnerships, and leadership. Government systems, applications, and networks must be secured. New better partnerships must be created with all stakeholders in the private and public sectors. The public have the right to expect both guidance and assistance in securing their home computers and identities. 

I believe that this truly underscores the need for a national CIRT/CERT in Canada, an organization that can help Canada meet these requirements and follow the steps as laid out in the strategy, as unfortunately it does not currently exist.

It is a step in the right direction, however many more are required.

The strategy is outlined here:
http://www.publicsafety.gc.ca/prg/em/cbr/ccss-scc-eng.aspx

Tell us what you think, or comment below!


Cheers,
Adrien de Beaupré, Handler, SANS Internet Storm Center
Senior IT Security Consultant
Intru-shun.ca Inc.

Adrien de Beaupre

353 Posts
ISC Handler
Thanks for this Adrien. I often wonder why I have to turn to other countries for information on defending against cyber threats. We still have a long way to go, but this is a good step. A national CIRT/CERT is a great idea. What's stopping us from forming one?
RobM

14 Posts
Hi Rob,

that is a very good question! I think that it would take a combination of recognizing that there is a need, motivation, funding, industry and government partnerships, trust, relationships, facilities, personnel, and goodwill.

Cheers,
Adrien
Adrien de Beaupre

353 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!