Cyber Security Canada Blogs
As a leading provider of cybersecurity services and solutions, we understand the unique challenges faced by businesses operating in Canada’s digital economy. Our team of experienced practitioners and certified auditors share their knowledge and lessons learned to help you strengthen your cyber resilience. Whether you are looking to achieve CyberSecure Canada certification or simply improve your security posture, our blog provides the information and resources you need. Learn more about us.
Implementing DMARC, DKIM, and SPF: Control Requirement 5.7.3.7
Email remains a primary tool for communication within organizations and with external stakeholders. However, it is also a common target for cyber threats such as phishing, spoofing, and spam. To mitigate these risks, the CAN/DGSI 104:2021 Rev 1 2024 standard includes Control Requirement 5.7.3.7, which mandates the implementation of DMARC, DKIM, and SPF on all […]
Network Segmentation for Public and Corporate Networks: Control Requirement 5.7.3.6
Protecting corporate IT resources from potential threats is paramount. One of the controls outlined in the CAN/DGSI 104:2021 Rev 1 2024 standard is Control Requirement 5.7.3.6. This requirement mandates that organizations segment their networks to ensure that networks provided to the public or customers are separated (and/or isolated) from the corporate networks. This blog will […]
Ensuring Secure Wi-Fi Connectivity: Control Requirement 5.7.3.5
In today’s interconnected world, secure Wi-Fi connectivity is essential for protecting corporate IT resources and sensitive data. Control Requirement 5.7.3.5 from the CAN/DGSI 104:2021 Rev 1 2024 standard mandates the use of secure Wi-Fi protocols, specifically WPA2-AES, and preferably WPA2-Enterprise or WPA3-Enterprise, along with proper password configuration as outlined in section 5.5. This requirement is […]
VPN Connectivity with Multi-Factor Authentication: Control Requirement 5.7.3.4
Control Requirement 5.7.3.4 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the necessity for encrypted connectivity and VPN access with multi-factor authentication (MFA) for remote access to corporate networks. This requirement is crucial for maintaining the integrity and security of sensitive data. Understanding Encrypted Connectivity Encryption is the process of converting data into a […]
Control Requirement 5.7.3.3: Activating Software Firewalls for Enhanced Device Security
Protecting individual devices within an organization’s network is just as important as securing the network itself. Control requirement 5.7.3.3 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the need to activate software firewalls on devices. This practice is essential for maintaining the security and integrity of your network and its endpoints.Why Activating Software Firewalls […]
Control Requirement 5.7.3.2: Implementing DNS Firewalls for Enhanced Security
Control requirement 5.7.3.2 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the need to implement a DNS firewall for outbound DNS requests to the Internet. This practice is essential for maintaining the security and integrity of your network. Why DNS Firewalls Matter DNS firewalls play a vital role in network security for several reasons: […]
Control Requirement 5.7.3.1: Implementing Firewalls for Enhanced Network Security
Control requirement 5.7.3.1 from the CAN/DGSI 104:2021 Rev 1 2024 standard highlights the need to place a firewall between two perimeters to control the amount and kinds of traffic that can pass between them. This is key to maintaining the security and integrity of your data and systems. Why Firewalls Matter Firewalls are crucial for […]
Control Requirement 5.6.2.8: Ensuring Integrity of Backup and Restoration Processes
Ensuring the integrity of backup and restoration processes is paramount. Control requirement 5.6.2.8 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the necessity of using a sampling of backup data to test and verify recovery procedures at regular intervals. This practice is crucial for maintaining the reliability and security of an organization’s data.The Importance […]
Control Requirement 5.6.2.7: Ensuring Security and Integrity of Critical Backups
Data is one of the most valuable assets for any organization. Ensuring the security and integrity of critical backups is not just a best practice but a necessity. Control requirement 5.6.2.7 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the importance of regularly testing these backups to verify their reliability, accessibility, and uncompromised state.Why […]
Control Requirement 5.6.2.6: Ensuring Data Integrity with Non-Modifiable Backup Files
Maintaining data integrity is crucial for any organization, and one way to achieve this is by ensuring that backup files are not modifiable. Control requirement 5.6.2.6 from the CAN/DGSI 104:2021 Rev 1 2024 standard emphasizes the importance of protecting backup files from modifications to preserve the integrity of the data. Let’s explore why this is […]

Our team of experienced cybersecurity practitioners are here to help your organization assess risks, identify vulnerabilities and implement the right security controls. From penetration testing and security audits to incident response planning and employee training, we offer a suite of cybersecurity services to strengthen your cyber resilience.Whether you need guidance achieving compliance with standards like CAN/CIOSC 104 or developing a comprehensive cybersecurity roadmap, our experts provide the strategic advice and hands-on support to protect your business. We take the time to understand your unique needs and tailor our approach to maximize the return on your cybersecurity investments.