Cyber Security Readiness

Canadian organizations are confronted with an evolving threat landscape as malicious cyber activities increase in scale and sophistication. Critical Infrastructure Critical infrastructureProcesses, systems, facilities, technologies, networks, assets, and services essential to the health, safety, security, or economic well-being of Canadians and the effective functioning of government. Critical infrastructure can be stand-alone or interconnected and interdependent within and across provinces, territories, and national borders. Disruptions of critical infrastructure could result in catastrophic loss of life, adverse economic effects, and significant harm to public confidence. (CI) operators and owners are especially at risk. Cyber attacks on CI,  can have devastating consequences on Canada’s economy, safety and national security.

This page provides resources from the Cyber Centre to help Canadian organizations and critical infrastructure increase their cyber security Cyber securityThe protection of digital information, as well as the integrity of the infrastructure housing and transmitting digital information. More specifically, cyber security includes the body of technologies, processes, practices and response and mitigation measures designed to protect networks, computers, programs and data from attack, damage or unauthorized access so as to ensure confidentiality, integrity and availability. readiness. This includes information on current cyber threats, steps to protect against them and ways respond to and recover from incidents.

Cyber Security Readiness Goals

The Cross-Sector Cyber Security Readiness Goals (CRGs) provide Canadian organizations with 36 foundational, realistic and achievable goals to strengthen their cyber security. Each goal is linked to concrete recommended actions that, if taken, will elevate the cyber security posture of Canadian organizations and CI .

Consult the Cross-Sector Cyber Security Readiness Goals Toolkit

To accompany these goals, the Cyber Centre has published Cyber Security Readiness Goals: Securing Our Most Critical Systems which provides an overview of the cyber threat Cyber threatA threat actor, using the internet, who takes advantage of a known vulnerability in a product for the purposes of exploiting a network and the information the network carries. landscape and explains how the CRGs came to be. This publication also highlights the CRGs ’ alignment with international frameworks and other Government of Canada publications and tools.

The CRGs are a tool for self-assessment that any organization can use to track their progress and improve their cyber security posture. They will be updated regularly to support organizations in effectively mitigating emerging cyber threats.

Additional resources

• Security considerations for critical infrastructure (ITSAP.10.100)
• Cyber threat bulletin: Cyber Centre reminds Canadian critical infrastructure operators to raise awareness and take mitigations against known Russian-backed cyber threat activity
• Cyber threat bulletin: Cyber Centre urges Canadian critical infrastructure operators to raise awareness and take mitigations against known Russian-backed cyber threat activity
• National Cyber Threat Assessments
• State-sponsored espionage and threats to critical infrastructure
• IT security risk management: A lifecycle approach (ITSG-33)
• Canadian Cyber Security Tool 2.0 (CCST 2.0) (Public Safety Canada)