Cyber Security Canada Blogs

Email remains a primary tool for communication within organizations and with external stakeholders. However, it is also a common target for cyber threats such as phishing, spoofing, and spam. To mitigate these risks, the CAN/DGSI 104:2021 Rev 1 2024 standard includes Control Requirement 5.7.3.7, which mandates the implementation of DMARC, DKIM, and SPF on all […]

Protecting corporate IT resources from potential threats is paramount. One of the controls outlined in the CAN/DGSI 104:2021 Rev 1 2024 standard is Control Requirement 5.7.3.6. This requirement mandates that organizations segment their networks to ensure that networks provided to the public or customers are separated (and/or isolated) from the corporate networks. This blog will […]

In today’s interconnected world, secure Wi-Fi connectivity is essential for protecting corporate IT resources and sensitive data. Control Requirement 5.7.3.5 from the CAN/DGSI 104:2021 Rev 1 2024 standard mandates the use of secure Wi-Fi protocols, specifically WPA2-AES, and preferably WPA2-Enterprise or WPA3-Enterprise, along with proper password configuration as outlined in section 5.5. This requirement is […]

Control Requirement 5.7.3.4 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the necessity for encrypted connectivity and VPN access with multi-factor authentication (MFA) for remote access to corporate networks. This requirement is crucial for maintaining the integrity and security of sensitive data. Understanding Encrypted Connectivity Encryption is the process of converting data into a […]

Control requirement 5.7.3.2 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the need to implement a DNS firewall for outbound DNS requests to the Internet. This practice is essential for maintaining the security and integrity of your network. Why DNS Firewalls Matter DNS firewalls play a vital role in network security for several reasons: […]

Control requirement 5.7.3.1 from the CAN/DGSI 104:2021 Rev 1 2024 standard highlights the need to place a firewall between two perimeters to control the amount and kinds of traffic that can pass between them. This is key to maintaining the security and integrity of your data and systems. Why Firewalls Matter Firewalls are crucial for […]

Ensuring the integrity of backup and restoration processes is paramount. Control requirement 5.6.2.8 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the necessity of using a sampling of backup data to test and verify recovery procedures at regular intervals. This practice is crucial for maintaining the reliability and security of an organization’s data.The Importance […]

Data is one of the most valuable assets for any organization. Ensuring the security and integrity of critical backups is not just a best practice but a necessity. Control requirement 5.6.2.7 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the importance of regularly testing these backups to verify their reliability, accessibility, and uncompromised state.Why […]

Maintaining data integrity is crucial for any organization, and one way to achieve this is by ensuring that backup files are not modifiable. Control requirement 5.6.2.6 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the importance of protecting backup files from modifications to preserve the integrity of the data. Let’s explore why this is […]