Membership Login FR

What's New

Supply Chain Resilience and Transparency

 

Due to the rising impact of information security incidents on global supply chains, many governments and regulatory bodies have increased the requirements on product vendors that sell into critical infrastructure sectors. Most recently President Joe Biden issued an executive order on improving the US cybersecurity and supply chain resilience.

 

It is a fact that downstream suppliers remain to be a very sought-after target for threat actors today. They can provide easy access to large enterprise organizations and government agencies - and cause massive disruptions - if critical suppliers are taken down. If we want to ensure the global digital economy is protected, these suppliers must take steps to improve their information security posture.

Vendors should demonstrate the transparency of their information security practices with internationally recognized product validations and business practice certifications. This can help demonstrate transparency of the vendor’s products and business practices.

 

In the same way we look for “EnergyStar” ratings on appliances, we need to create a “CyberStar” program that provides objective, independent, apolitical third-party validation of technologies and business practices to demonstrate suitability for critical infrastructure supply chains. This could translate into an international compliance passport allowing them to contribute to the critical infrastructure supply chains in all nations.

 

A program such as this would also support product labelling - all consumers of these products could be protected. This program could be a method of strengthening the resilience of global supply chains while fostering the growth and stability of these vendors. This can be achieved by requiring, requesting, or supporting adoption of a transparency initiative to demonstrate:

 

Product Validations

Products would need to have code validated based on best practices in information security hardening, respective of the type of product and the sector it supports. Validations would demonstrate the current versions and firmware of the offering and would need to be maintained with future revisions and updates.

 

Business Certification

Cybersecurity certification is the best way to ensure best practices in cyber resilience are followed within downstream suppliers and contractors. Certification can ensure these agencies and external providers have the basic protections in place to prevent cyber incidents and have a plan on how to respond in the event of an incident.

 

Certification supports the audit of the supplier’s infrastructure by an accredited third-party auditor. Ensuring the correct implementation for maximizing information security.

 

Cybersecurity certification could also be the best way for insurers to de-risk cyber insurance policies. With certification, organizations can clearly demonstrate third-party audits are conducted routinely, which in turn should classify them as lower risk to support Cyber Insurance eligibility.

 

Privacy Compliance

Privacy reviews of the vendors business practices must be factored into supplier transparency. We must ensure the vendors have privacy programs supporting secure collection, storage, transmission, and proper deletion of the personal information of its customers.

 

A third-party review of the privacy programs currently employed with these vendor organizations will help ensure vendors are following the highest bar in protecting the confidentiality of personal information.

 

Perimeter Testing

Vendor organization should also be ensuring the implementation of control requirements and privacy programs are secure by routinely testing the perimeter for weaknesses with penetration testing and vulnerability scanning.

If there are any critical or high-risk vulnerabilities detected they should be addressed immediately, and medium to low risks should be corrected when possible.

 

Openly sharing Transparency

If each jurisdiction creates their own framework and regulations regarding supply chain security and compliance, this can create barriers to trade.  Forcing vendors to comply with multiple frameworks based on the location a product is being sold can cause extreme cost and overhead increases to these vendors which in turn will translate to higher prices on products and services.

 

The recommended path forward would see vendors openly share any validations, business process compliance and/or certification, and perimeter scan regime openly and freely. If these products demonstrate clear compliance with internationally recognized frameworks, it should act as a passport for the sale of their products internationally.

 

 

 

Author: Brendan Dunphy

Director, Trust and Compliance | Directeur, Confiance et de Conformité

Debugging Cyber Policy

 

 

The third sectors processing power in cybersecurity policy

 

Rattling off data of cybersecurity attacks on Canadians seems an all too repetitive task. Daily, publicly available information is published on the staggering economic and human costs of cybersecurity attacks on our country, whether on small business, municipalities, individuals, or the critical infrastructure that keeps the lights on and food on the shelves. The massive demand for thousands of cyber workers that can be easily viewed by scrolling any job site or the millions of dollars lost to ransomware attacks supports the need to strengthen public policy in cybersecurity.

 

Canada is no stranger to cyber attacks. A decade ago, the federal government reported an attack requiring our Department of Finance and Treasury Board to disconnect from the Internet. It was ultimately disclosed that sensitive information was stolen and that it took over six months to recover (Hackers stole secret Canadian government data | CBC News).  In May of 2020, the Canadian Security Intelligence Service (CSIS) and the Canadian Security Establishment (CSE) issued a rare joint statement highlighting the elevated level of risk to the cyber security of Canadian health organizations involved in the national response to the COVID-19 pandemic[1]. The report highlighted that CSIS saw an “increased risk of foreign interference and espionage due to the extraordinary effort of our businesses and research centres,” to confront the Pandemic with evidence-based science. The tip of the iceberg.

 

Cyber attacks are frequently targeting all sectors to steal Intellectual Property, state and trade secrets[2]. Thieving seagulls hover over the innovations driving our efforts to reduce climate change, develop new medicines and treatments, and produce technological advances that strengthen prosperity and improve lives.

 

The drum has been beaten, and the bells have been rung.

 

Yet, the public policy ecosystem in Canada remains uncertain and misaligned on the path forward. Unlike our allies and adversaries, Canada remains without a comprehensive cyber policy[3]. As Gold, Parsons, Poetranto highlight, the approach remains “ad hoc, spasmodic.” It’s easy to point fingers at governments for the crawling nature of cyber public policy development. With technology developing at lightning speed along with tactics and methods, keeping up with bad actors is a challenging task for policymakers and our elected leaders. Democracies are not intended to move forward without debate and deliberation. Checks and balances are the point.

 

Add a series of minority governments in Ottawa where passing even important legislation is a challenge, and it is no wonder a comprehensive and transparent policy approach has not been enabled. Provincial and municipal governments are underfunded and lacking a full understanding of the extent to which data resiliency extends. The very definition of cybersecurity is confusing and ever-expanding, with some interpreting the term as privacy rights or cyberbullying and rightfully so. For others, it is the protection of our factories, ports, and critical infrastructure. Policy development in cybersecurity is cumbersome because of the confusion over the term and breadth of which this policy domain extends. Pointing fingers at Canadian public policy for cyber, is in tune to poking a stick at the fog.

 

The path to maximizing our civil resources is utilizing the collective effort of Canadian society through meaningful coordination of assets. Every day whether in government, the private sector, or civil society, well-intentioned Canadians are working 24/7 to prevent and mitigate attacks.

 

Skrzeszewski and Cubberley capture the concept well in describing how the Internet has enhanced the social convergence of three societal sectors. Previously, public policy was often based on two clearly defined sectors – the for-profit or private sector and the government or public sector. [4] The Internet has prompted a re-emergence of the third sector, the non-profit or sometimes described as the civil society sector. The third sector has emerged with a critical role of acting as a coordinating field for the three-sector approach to social, economic, and cultural goals. Not associated directly with the government, civil society organizations may play multiple roles and frequently serve as an alternative for delivering services, where gaps exist in a traditional private-public arrangement[5]. There is a blurring but positive role between sectors that civil society has the perspective to coordinate.

 

It’s that coordination by arms-length organizations that are producing the effectiveness in mitigating attacks. Whether within the thriving cyber ecosystems of San Antonio or Israel, it is the collaboration of the three sectors delivering success. Civil society is engaging through the Paris Call, the Charter of Trust and other international forums calling for trust and security in cyberspace. Domestic expertise residing outside of government is a necessary component of a comprehensive cybersecurity strategy. Canada can debug and strengthen its cyber policies by opening the door to a thorough engagement with civil society. 

 

As Megan Stifel of the Global Cyber Alliance has pointed out, many of cyber best policy practices were developed by civil society through multi-stakeholder processes.

 

Collectively, we can have a measurable impact[6] on mitigating and preventing cyberattacks on Canadians. In a world where trust is critical, sharing and collaborating is not a simple task. It is, however, the only way and the Canadian way.

 

 

 

 

Author: Jeremy Depow | Director, Policy and Stakeholder Relations

 

Refrences

[1] https://www.canada.ca/en/security-intelligence-service/news/2020/05/joint-cse-and-csis-statement.html

[2] Shackelford & Bohm, Securing North American Critical Infrastructure: A Comparative Case Study in Cybersecurity Regulation, 40 Can.-U.S. L.J. 61, 2016

[3] Canada’s Scattered and Uncoordinated Cyber Foreign Policy: A Call for Clarity (justsecurity.org)

[4] A New Vision of Community and Economic Development: A Multidimensional Convergence of Government, Business, and the Social Sectors with the Internet (archive.org)

[5] https://www.brookings.edu/blog/up-front/2020/04/06/civil-society-an-essential-ingredient-of-development/

[6] The Importance of Civil Society in the World of Cybersecurity - GCA | Global Cyber Alliance | Working to Eradicate Cyber Risk

 

Five Reasons to Pursue a Career in Cybersecurity

 
Choosing a career path can be daunting. Luckily, the world is more connected than ever before. Working remotely and the ease at which you can change careers has never been more accessible for Canadians. Whether jumping into the job market for the first time or you’re ready for a change – your choice of career path is an important one. If you’re looking for an exciting, rewarding and in-demand career, here are five reasons cybersecurity may be right for you.  
 

In-demand Jobs 

There is currently a growing talent shortfall for cybersecurity positions in Canada, with over 6,000 positions open across the country. The number of open positions for cybersecurity professionals in Canada is growing by 7% annually. Globally, there are currently millions of vacant positions.  With the rise and increased complexity of cyber attacks, and the evolution of the industry, this demand is only expected to grow. No matter which concentration you choose, from analyst to engineer, administrator to architect, your skills and knowledge are needed in cybersecurity.  
 
Exciting Future 

While computers and information technologies are now ubiquitous in society and have been around in some form or another for decades, cybersecurity is very much in its infancy. Choosing a career in cybersecurity means you’re at the forefront of an industry that will shape and protect how the digital world operates for future generations. If career growth and innovation are important to you, cybersecurity may be the right choice.   
 
Cutting Edge Technology

As the cybersecurity industry advances, so do the technologies involved. Working in a Security Operations Center (SOC) can give you access to some of the most advanced software and hardware on the planet. Learn and grow as part of a team that’s developing, creating and executing the strategies necessary to protect the world from malicious cyber attacks.   
 
Competitive Salary

It’s no secret that careers in the IT industry are often well compensated with plenty of room for advancement, and the cybersecurity field is no different.  According to talent.com, the average cybersecurity salary in Canada is $86,541, while more experienced workers make upwards of $130,000 per year. As the industry grows and more value is placed on securing and protecting critical infrastructures, these numbers are expected to grow in parallel.    
 
A Rewarding Experience

Everyone wants to feel like their efforts have made a real and tangible difference in the world. As a cybersecurity professional, your efforts will protect the consumers, the businesses and the stakeholders of the digital world. Yes, cyber attacks are perpetrated digitally, but their effects have real-world consequences. Each corner of today’s society operates digitally in some way. Every person, either directly or indirectly, relies on technology in their everyday life and in-turn needs protection. A career in cybersecurity can be a rewarding one with a direct and positive impact on the world around you.    
 
Ready to learn more about cybersecurity careers? Check out the Cyber Bootcamp to jumpstart your career or browse the TechNation Career Finder and find available jobs across Canada.  

The Importance of Cyber Security Education

 

October is Cyber Security Awareness month (#CSAM2021) an internationally recognized campaign held each October to help the public learn more about the importance of cyber security and staying safe online.  Our Workforce Skills and Development team at CyberNB understands the importance of fostering the development of cybersecurity skills starting at a young age.

 

CyberNB has been involved in the K-12 education space in New Brunswick since 2015. In this time, through a Memorandum of Understanding (MOU) with the government of New Brunswick’s Education and Early Childhood Development (EECD) department, CyberNB has seen rapid growth and implementation of many curricular and extra-curricular learning opportunities for students.

 

In this five-year span, the introduction of several curricular cybersecurity programs has been developed and rolled out. Starting with a complete student/teacher resource package for grades one to six, which includes everything needed to teach the basics of cybersecurity to Elementary and Middle School Technology Education (EMSTE) classes.

 

The need for this education has never been more at the fore front, as our lives are increasingly more and more online. For so long children are taught how to stay safe in the physical world i.e. how to cross the street, don’t accept things from strangers, etc. Now we live in two worlds with the second being digital, and children need to learn the basics of online safety beginning in the earliest grades.

Since CyberNB created its K-8 cyber education resources they have only been deployed in several of the Maritime Provinces, however, recently CyberNB has partnered with BlackBerry and Public Safety Canada to embark on an amazing project where all the educational resources will be transformed into a fully interactive website that students and teachers from across the country will be able to access at no cost.

 

For High School aged students, CyberNB has partnered with CISCO Canada and the Department of Education on a brand-new innovated project, that will provide all High schools (French and English), anywhere in Canada, free access to CISCO’s Network Academy. Complete access to all of CISCO’s grade 9-12 curriculum, will prepare students with the skill set for an advanced start towards their career in Cybersecurity.

 

Extra curricular activities are also very important in getting students interested in cybersecurity. Over the past number of years CyberTitan has been an excellent cross-Canada cybersecurity competition that has seen a steady increase in the number of teams participating over the years.

 

Recently CyberNB launched a new cyber competition called “CYWARIA League North.” This differs where grade 11 and 12 students from across the country will compete head-to-head in an Esports style competition. Throughout the challenges students will be immersed in real world cybersecurity scenarios and threats. The skills developed, when participating in the competitions, are industry relevant and provide the sharp acuity and knowledge needed to become a cybersecurity professional.

 

There has also been an emergence in the way that Cybersecurity employers think about their hiring and recruitment strategy. In the past, companies would request a laundry list of qualifications, certifications, and experience, focusing on an “on-paper” version of the ideal candidate. The standard of a Computer Science Degree +10 years experience is shifting, and employers are now more interested in how effectively you are able to perform the cybersecurity tasks right out of the gate.

 

To help fill the gap in the growing cybersecurity sector we partnered with Canadian tech education leader, Lighthouse Labs to create Cyber Bootcamp an intensive 12-week program  that provides industry-aligned curriculum (NICE framework), mentorship, and a top-notch learning environment that focuses on practical, hands-on skills needed to launch a cybersecurity career. As advertised: “We are going teach you everything you need to know, but only what you need to know!”

 

The value and importance of cybersecurity education cannot be understated. Together with our partners we strive to build and deliver relevant programs and curriculum to students of all ages across the country. 

 

 

Contributed By:  Dillon Donahue | Director, Workforce & Skills

CyberNB bringing interactive cyberwar league that puts students on the front-line to tackle real-world cyber-attack scenarios to Canada

 

Esports in Canada are growing exponentially, a recent study indicates that 89% of Canadian kids and teens play video games. With screen time on the rise can gaming go from being considered hours wasted to be the perfect training for an introduction to the booming field of cybersecurity?

 

CyberNB is working with CYBERPRO Global a world-class cyber education and training provider to bring CYWARIA League North to Canadian students this fall.

 

CYWARIA is a unique program in Canada built on the same platform international companies use for hands-on training to remain resilient in the face of today’s cyber threats by arming them with knowledge and preparing them with real-life experience.

 

Developed on CYWARIA, a cybersecurity streaming platform, CYWARIA League North is an interactive cyberwar game designed to teach students valuable skills for the digital battlefield by replicating real-world cyber threats.  Players tackle cyber-attack scenarios, honing their skills in threat detection, mitigation, and prevention, all the while learning about the always-evolving field of cybersecurity, a booming sector with over 6,000 open jobs in Canada and virtually zero unemployment. 

 

Starting October 2021, Canadian students registered in grades 11 and 12 from across the country will have the opportunity to enroll in the challenge-based platform. The program consists of 12 monthly challenges that are worth points and includes access to videos, tutorials, and other resources to help prepare for the next campaign.

 

To learn more about CYWARIA League North and to register your student, visit www.cywarialeaguenorth.com.

 

Read the Media Release

Stepscan, CyberNB and UNB collaborate on pioneering gait-based biometric security.

One small section of flooring, one giant leap for access security.

 

Biometric security is becoming increasingly familiar, with fingerprints and facial measurements used to unlock doors and devices not only in secure facilities, but in everyday life.

 

Prince Edward Island-based Stepscan Technologies has developed a new technique for contactless security, believed to be the world’s first solution based on analyzing an individual’s footsteps using high-resolution, pressure-sensitive flooring. They turned to CyberNB as a cybersecurity expert to capitalize on this new technique. UNB’s research experts joined CyberNB and Stepscan to build on this success and test, validate and improve their solution. Thanks to CyberNB and Fredericton’s Knowledge Park, the platform will be installed and tested in the city’s new, state-of-the-art Cyber Centre to provide real-world evaluation.

 

“My team at UNB uses machine learning to better understand, assess, or control human movement and health,” said Dr. Erik Scheme, associate professor of electrical and computer engineering and director of the Health Technologies Lab at UNB. “This first-of-its-kind project is an exciting opportunity to apply our expertise in the real world to validate and improve Stepscan’s novel, touchless biometric solution.” 

 

Dr. Scheme partnered with Stepscan, who has developed the world's first modular pressure-sensitive flooring capable of capturing a sufficient number of footsteps of natural gait for this use. Stepscan’s proven technology is currently used in military and health contexts, and they were eager to explore this new application, developed by Stepscan’s research and development lead, Dr. Patrick Connor, through an NSERC-supported postdoctoral fellowship. The expertise in machine learning, human-machine interaction, gait analysis and biometrics found at UNB made the institution an ideal partner in the project.

 

“Through Dr. Connor’s research, we have shown that we are able to analyze various features of a person's gait and foot-floor interactions to differentiate individuals by their walking patterns," said Crystal Trevors, president and CEO of Stepscan Technologies. “We are thrilled to be working with UNB to expand our preliminary work and explore novel machine learning approaches to maximize the performance and robustness of this exciting application for our flooring system.”

 

Originally developed for medical applications, Stepscan’s interlocking, sensor-enabled tiles provide accurate, high-speed measurement of applied pressure and weight. The flooring can be used to support, among others, physical rehabilitation and fall risk assessment by mapping these measurements over time to understand a person’s gait.

 

‘Gait’ refers to the specific ways a person moves while walking, based on physical biology and years of learned movement. Muscle and joint movements affect the way a person’s feet touch the ground through the process of taking a step; this complex motion is highly unique and difficult to imitate, making it useful in verifying identity.

 

CyberNB is a cybersecurity-sector organization that supports collaboration across industry, government and research organizations. CyberNB is based in the new Cyber Centre at Fredericton’s Knowledge Park, Canada’s most advanced facility for cyber defence and critical infrastructure protection.

 

Stepscan tiles will be installed in this building and used to verify a user’s identity in conjunction with the building’s existing security measures, enabling the system’s accuracy and efficacy to be validated.

 

“This innovation will leverage gait analytics to enable two-factor authentication, requiring zero-touch high secure access when matched with proximity card systems,” said Tyson Johnson, CEO, CyberNB. “We are excited to support this Canadian innovation and to see this initially deployed in the Cyber Centre.”

 

Additional tiles will be installed at UNB, supporting further scientific exploration, experimentation and analysis of the technology in a controlled setting, as well as creating opportunities for students to develop in-demand expertise in cybersecurity, biometrics, machine learning and artificial intelligence.

 

“We are proud to support our researchers’ contributions to our region’s innovation economy through partnerships that match UNB expertise with industry needs,” said Dr. David MaGee, UNB’s vice-president (research). “This collaboration will no doubt create new potential, new knowledge and new learning opportunities.”

 

The project will run through May 2024 and is supported by the Government of Canada through $420,001 in funding from the Natural Sciences and Engineering Research Council’s Alliance Grants program and $275,000 through the Atlantic Canada Opportunities Agency’s Regional Economic Growth through Innovation program, as well as $200,000 from the New Brunswick Innovation Foundation. As a cyber defence collaborator, CyberNB will contribute $210,000 towards the high-security infrastructure access improvements. Stepscan and Knowledge Park will provide additional funding and in-kind support for tile hardware, installation and maintenance, and systems integration and data, valued at $455,000.

 

 

Additional quotes:

 

“NSERC Alliance grants support research projects led by strong, complementary and collaborative teams that will generate new knowledge and accelerate the application of research results to create benefits for Canada. We are pleased to support the University of New Brunswick and their partners from government, industry and not-for-profit who are taking big steps in biometric security and providing student training in this increasingly relevant field of research.”

- Marc Fortin, Vice-President, Research Partnerships, NSERC

 

“We are committed to supporting collaboration between industry and academia to accelerate important breakthroughs in research and technology. ACOA’s investment in UNB will support innovative developments and intellectual properties that will have lasting and significant benefits for cyber and digital health ecosystems in the Atlantic region.”

Jenica Atwin, Member of Parliament for Fredericton, on behalf of the Honourable Mélanie Joly, Minister of Economic Development and Official Languages and Minister responsible for ACOA

 

“There is a powerfully synergistic combination of research expertise, industrial capability and emerging consumer need in this project. We believe that Dr. Scheme has precisely the right partners involved in this work to lead to a real Atlantic success story. Seeing the innovative new technology of gait biometrics emerge from Dr. Scheme’s research lab underscores the importance of the research grants that NBIF provides every day. By supporting students, equipment, and other needs associated with applied research via grants like the NB Innovation Research Chair, a fertile environment is created for impactful projects like this one.”

- Dr. Laura Richard, Director of Research, New Brunswick Innovation Foundation

Why You Should Upskill Into a Cybersecurity Job

The idea of the cybersecurity industry might seem like something out of a spy movie or a Y2K party. But despite the alien ring of words like cyberattacks, the industry is no longer niche or obscure. From banks to governments to social media companies, organizations across the board require an increasing number of professionals trained in cybersecurity to help protect them. The field is growing at an ever-quickening pace.

 

Simply put, cybersecurity is the application of technologies and processes to protect systems, networks, and programs from digital attacks. These attacks typically attempt to uncover sensitive information, extort money, or exploit businesses. As the world becomes increasingly digital and the information on the Internet becomes more valuable, these attacks are increasing in frequency.

 

Cybersecurity is an international industry with professionals across the globe. Canada is no exception, and the country is home to more than 11,000 people with well-paying jobs in cybersecurity, representing $1.7 billion of GDP. The industry’s only expanding from here on out, making this an excellent time to transition into a career in cybersecurity.

 

To help more professionals reskill into cybersecurity and bolster Canada’s industry, the strategic and community-focused CyberNB is here. CyberNB is on a mission as a connector and multiplier working towards the collective advancement of Canada’s booming cybersecurity sector. CyberNB takes a holistic approach to the success of this sector by spearheading initiatives that align schools, skills and jobs. CyberNB’s latest initiative is the Cybersecurity Bootcamp, powered by Lighthouse Labs. Now you can upskill into cybersecurity through a 12-week remote program.

 

To explain more about the cybersecurity industry in Canada and beyond, what a job in cybersecurity might look like, and why it’s a great time to upskill into the industry, we spoke with Dolev Farhi. Dolev is a Principal Security Engineer at Wealthsimple, who has a genuine love for the industry and a wealth of insider knowledge. Read the interview to learn more about cybersecurity from an industry expert.

 

LHL: What is your main area of expertise within cybersecurity?

 

D: “...My area of expertise is security engineering, which is a pretty generic term and can mean many things to a variety of people. It boils down to solving advanced engineering problems companies face that require applied security in a wide variety of domains to support the business goals.

 

Whether it’s a new product that’s about to get released or a new feature of an existing product, everything has some security element that could break. They need to be reviewed, tested and vetted to reduce the risk to the business and support the day-to-day operations.”

 

LHL: What is the cybersecurity industry in Canada like? Is there a lot of growth happening at the moment?

 

D: “Canada’s cybersecurity industry is interesting, because we have a variety of businesses in banking and healthcare. Both of these sectors have been significantly impacted by cybersecurity breaches in the last few years.

 

With remote work now being the norm, we are seeing more US-based companies start to tap into the local Canadian market, whether by hiring remote engineers or by opening local Canadian branches to better serve their local customers. Some recent examples are Reddit, Netflix, Cloudflare, and Square, among others.

 

Hackers are not going away any time soon and the world is only going to get more connected. As long as this is our reality, cybersecurity professionals will always be required…”

 

LHL: Is there a need for more professionals trained in cybersecurity?

 

D: “... Cybersecurity needs more diversity from people of different backgrounds and cultures who can bring their unique perspectives. The industry needs to innovate and move faster than the bad actors do, and this requires human resources to grow the talent pool required to develop long-term strategies. Security is not only an engineering problem, it’s much more complex than that.”

 

LHL: What can a job in cybersecurity look like?

 

D: ”...Cybersecurity is a pretty large industry with multiple disciplines within it: Cloud Security, Network Security, Application Security, and Data Security, to name a few. A career can be built in each one of them, or across multiple disciplines.

 

You could be in a customer facing role providing recommendations to companies on how they should protect themselves against attacks. Or, you could be configuring your own company’s firewall to allow employees to securely work remotely. This is just the tip of the iceberg.

 

If you think about how militaries operate, cybersecurity is similar. A military protects their country and its citizens by having skilled troops in their lines, who can operate at one or more spaces, such as combat units, domestic and international intelligence gathering, airspace defence, back office work, etc.

 

Cybersecurity is similar - its goals are to support the business by reducing risk, to develop strategies to detect, and to respond and prevent various threats that put daily operations at risk.”

 

Upskill into Cybersecurity with CyberNB’s Bootcamp

 

If you’re interested in a career in cybersecurity, CyberNB can help you train into the industry with their new Cyber Bootcamp, powered by Lighthouse Labs. This virtual training program provides digital upskilling for those with non-technical backgrounds, or with basic digital experience. The 12-week program offers mentorship and practical, hands-on skills that will help you successfully launch a new career in cybersecurity. Demo Days allow you to showcase your new skills to potential employers, and virtual job fairs will have you connecting with CyberNB’s large network of partners across the country. All this will set you up for success in an exciting new field that needs more skilled professionals.

 

Is Cyber Bootcamp for me?

 

Whether you’re a recent grad or someone who’s looking for a career change, this program is great for applicants that thrive on problem solving, collaboration, and attention to detail. This bootcamp is well suited for beginners or intermediates with some experience in computing. The field of cybersecurity can also be a unique opportunity for those transitioning out of the military and looking to apply their skills to a civilian career.

 

What Will the Program Cover?

 

Learn at your own pace as you tackle modules on server administration, network security, threat modelling, analysis, and incident response.

 

Learning these subjects will qualify you for entry-level roles, including (but not limited to):

  • Cybersecurity Specialist/Technician
  • Cybersecurity Incident Analyst/Responder
  • Cybersecurity Analyst

 

The first Cyber Bootcamp cohort starts in September 2021 for students across Canada.

 

Are you ready to start your new career? 

Learn More! 

thestar.com - From classroom to cyber career in just 3 months

New Canadian program designed to give non-techies entry-level skills to crack into the booming cybersecurity industry will welcome its first cohort in September

 

Cyber Bootcamp is designed to help meet the massive demand for workers in an industry with virtually no unemployment. Best of all, you don’t have to be a programmer or software engineer to apply. In fact, the program is explicitly meant for people without an IT background.

 

Read more here: https://www.thestar.com/sponsored_sections/careers-in-a-digital-economy/from-classroom-to-cyber-career-in-just-3-months.html?dfp=MP-CID_3

New Brunswick, Cisco Canada and CyberNB launch industry-recognized cybersecurity curriculum for students

Video announcement found here

 

News Summary:

  • Cisco Canada, New Brunswick’s Department of Education and Early Childhood Development, and CyberNB are partnering on a new education program that will narrow the digital skills gap with a cybersecurity curriculum.      
  • Offered in French and English, the province-wide program will equip upwards of 1,500 students over three years with cybersecurity skills through Cisco Networking Academy, with an opportunity to earn industry-recognized credentials.
  • The partnership will help solidify New Brunswick as a leading centre for cybersecurity and build a pipeline of talent to keep up with the growing demand for cybersecurity skills. 

 

Fredericton, NB, June 23, 2021 – To address a digital skills gap that has been accelerated by the COVID-19 pandemic, today Cisco Canada, New Brunswick’s Department of Education and Early Childhood Development, and CyberNB are announcing a partnership to deliver cybersecurity skills education and training to upwards of 1,500 high school students over the next three years. The program will help solidify New Brunswick as a leading centre for cybersecurity in Canada and enable the province to keep up with the growing demand for cybersecurity jobs.

 

As Canada moves into the next era of economic growth, the need to equip Canadians with the right mix of digital skills has never been greater. The Information and Communications Technology Council (ICTC) estimated that employment in the digital economy will grow to over two million by 2022. The need for a skilled workforce is even more evident in the cybersecurity space, where demand for cyber talent is growing seven per cent annually across the country, but without enough skilled professionals to fill the roles. 

 

“We live in a fast-paced world where innovation and technological progress are constant. Demand for cybersecurity talent is growing and our students need to be prepared to join technology-based workforces that are still evolving,” said New Brunswick Minister of Education and Early Childhood Development, Dominic Cardy. “With open access to cybersecurity courses provided by Cisco’s Networking Academy, our students will be ahead of the curve. We will work closely with CyberNB and other partners to identify and create experiential learning opportunities that can provide students with valuable knowledge, skills and connections as they prepare to build their lives in New Brunswick after graduation.”

     

Starting September 2021, students will have the opportunity to enroll in bilingual Cisco Networking Academy courses through CyberNB – a non-profit focused on growing Canada’s cybersecurity sector – with the potential to earn an industry-recognized credential as a Cisco-Certified Cyber Ops Associate. Along the education pathway, students can also earn badges for Intro to Cybersecurity, Cybersecurity Essentials, Networking Essentials and more. This will set them up for future employment in a highly sought-after industry as they establish their IT careers in New Brunswick. 

 

The program is funded by a three-year $1.75 million investment from Cisco Canada’s Country Digital Acceleration Program which forms strategic partnerships with governments to help build digitally inclusive societies, more resilient economies, and the workforce of the future. 

 

“Cisco is investing in this program to build a talent pipeline of skilled workers for the cybersecurity industry in New Brunswick and beyond,” said Shannon Leininger, President of Cisco Canada. “In this post-pandemic, digital-first world, a skilled IT workforce is integral to Canada’s long-term economic prosperity and competitiveness. Through partnership models like these, we can scale cybersecurity skills training nationally and help Canadians pursue high-paying, high-skilled jobs.” 

     

“We know that cybersecurity skills are in demand – and that this demand will only continue to grow as our world becomes ever-more connected,” said Tyson Johnson, Chief Executive Officer, CyberNB. “CyberNB will be rolling out the curriculum to English and French schools across the province, providing training and support for teachers to successfully implement the industry recognized program in the classroom and give their students real-world, high -demand skills training.”

 

The program is available to grades nine through 12. The entire course takes up to 255 hours to complete, and includes modules, hands-on labs, quizzes, activities, and exams.  

     

About Cisco 

Cisco (NASDAQ: CSCO) is the worldwide leader in technology that powers the Internet. Cisco inspires new possibilities by reimagining your applications, securing your data, transforming your infrastructure, and empowering your teams for a global and inclusive future. Discover more on The Network and follow us on Twitter.

 

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.

Tenable Partners with CyberNB to Secure Canada’s Critical Infrastructure

Columbia, MD (June 10, 2021) -- Tenable®, Inc., the Cyber Exposure company, today announced it has become the first vulnerability management vendor to partner with CyberNB’s Critical Infrastructure Security Operations Center (CI-SOC) to increase the resilience and security of Canada’s critical infrastructure. Through the strategic partnership, Tenable will bring its risk-based vulnerability management and industrial security solutions to the CI-SOC, empowering critical infrastructure stakeholders to see, predict and reduce cybersecurity risk.

 

CI-SOC brings together data from multiple critical infrastructure owners and operators across all sectors. By leveraging Tenable’s industry-leading solutions within the CI-SOC, including Tenable.io and Tenable.ot, stakeholders gain deep visibility and analytics across this massive data set to understand their cyber risk posture. In addition, CyberNB members can now use Tenable’s technology to identify vulnerabilities, prioritize those with the greatest business impact and act quickly to reduce risk. The partnership will also facilitate information sharing between the private and public sectors, including best practices for protecting critical infrastructure against rising security threats.

 

“Our reliance on critical infrastructure continues to surge, bringing increased threats for owners and operators to manage. With a limited cybersecurity workforce, they are looking for smarter, more automated ways to understand and ultimately reduce their risk,” said Marty Edwards, vice president of OT security, Tenable. “We’re excited to partner with CyberNB to bring Tenable’s risk-based insights and predictive technologies to Canada’s critical infrastructure operators, enabling them to understand where they’re exposed, to what extent and how to most effectively reduce their risk.”

 

“In the cyber solutions market, we were looking to partner with a visionary leader that could help us paint a picture of the IT risks for small, medium and large businesses,” said Sheldon Shaw, VP of Innovation and Infrastructure at CyberNB. “We see the relationship with Tenable as a key capstone as we move forward.”

 

For more information about Tenable, visit www.tenable.com.

To learn more about CyberNB’s CI-SOC, visit https://cybernb.ca/CI-SOC.htm.

 

About Tenable

Tenable®, Inc. is the Cyber Exposure company. Over 30,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 30 percent of the Global 2000 and large government agencies. Learn more at www.tenable.com.

CyberNB: 2020/2021 Year in Review

What a year it’s been! From our first Board of Directors meeting in June to recently launching Cyber Bootcamp and our Transparency Centre initiative, CyberNB’s first year as a non-profit has been a memorable one.
 
Read our 2020/2021 Year in Review for all the highlights.

CyberNB and FutureShield Collaborate to Support Critical Infrastructure Owners and Operators in Canada

CyberNB Inc. is pleased to announce a partnership with FutureShield Inc., a technology solution and consulting practice for physical & IT security, emergency management, and continuity that specializes in critical infrastructure protection. 

 

FutureShield is a Toronto-based company that has provided security and emergency manager clients with technology experience and software integration operational support for more than 30 years. President and Founder Cynthia Weeden will drive awareness for CyberNB’s Critical Infrastructure Security Operations Centre (CI-SOC) with industrial security leadership across Canada, as well as with the provincial and federal government.  

 

In addition to the CI-SOC, Weeden will promote CyberNB’s Critical Infrastructure Protection Network (CIPnet) membership program. CIPnet is Canada’s most extensive network of cybersecurity stakeholders, leveraging the power of collective impact to multiply opportunities for members at home and abroad. 

 

Finally, Weeden will ensure that critical infrastructure owners and operators and industrial security executives are aware of CyberNB’s Trust & Compliance initiatives, specifically the value of obtaining cybersecurity certification and demonstrating security and resilience through CyberNB’s Transparency Centre initiative with Lightship Security. 

 

If you are a critical infrastructure owner or operator with questions about the CI-SOC, CIPnet, or cybersecurity certification, please contact Cynthia Weeden at [email protected].

CyberNB and Lighthouse Labs Announce Launch of Cyber Bootcamp to Meet Growing Demand for Cybersecurity Talent

New 12-week virtual training program gives non-IT professionals in-demand

skills for careers in the booming cybersecurity industry    

CyberNB Inc. and Canadian tech education leader Lighthouse Labs are thrilled to announce the launch of Cyber Bootcamp, a new online training program that, in just 12 weeks, gives students with non-technical backgrounds the skills and training they need to launch a career in cybersecurity. Graduates will be qualified for roles such as a Cybersecurity Specialist or Technician, a SOC Analyst Level 1, or a Cybersecurity Incident Analyst or Responder. As part of the program, graduates will be matched with employers from across the country.

 

“As Canada’s top programming and coding bootcamp, Lighthouse Labs was a natural partner in this ground-breaking training program,” says Dillon Donahue, CyberNB’s Director of Workforce & Skills. “They’re a national leader in finding the best ways to train the next generation of tech workers, and we’re excited to apply their approach to cybersecurity training. “

 

Since 2013, Lighthouse Labs’s hands-on and accelerated coding bootcamps have launched the tech careers of over 1,500 graduates, with over 95% of job-seeking alumni finding work within six months in 2019.

 

“Partnering with CyberNB on the Cyber Bootcamp was a perfect fit for us,” says Jeremy Shaki, CEO of Lighthouse Labs. “Their focus on training the next generation of cybersecurity professionals aligns with our goals to empower students, launch careers, and contribute to the incredible growth of Canada's tech industry.”

 

Lighthouse Labs is currently offering fully remote learning, and the Cyber Bootcamp will be open to students across Canada. While open to anyone looking to pursue a career in the cybersecurity industry, the Cyber Bootcamp is a particularly excellent up-skilling option for recent graduates, exiting military personnel looking to transfer their security experience into the tech sector, and people looking to pivot in their careers.

 

Following an introductory self-study prep course on computer operations, students will be taken through a 12-week curriculum. Delivered through a mix of live online classrooms and self-guided learning, each week of the program features a different theme, including server administration, network security, threat modelling and analysis and incident response.

 

The program also has a strong workforce connection component. CyberNB is working with its partners and members across the country to promote its job-matching service to the industry. Following the program, CyberNB will provide graduates with career readiness and job placement services, matching students and employers to help to fill the jobs gap and launch many exciting new cybersecurity careers.

 

The job opportunities for graduates are extensive. There is a growing demand for cybersecurity talent, with over 6,000 open positions in Canada, and the talent shortfall continues to grow.

 

The first Cyber Bootcamp cohort will start on September 13, 2021. For more information on Cyber Bootcamp and how to apply, visit: https://cybernb.ca/CyberBootcamp.htm

CyberNB | CIPnet becomes Associate Partner in Charter of Trust

CyberNB | CIPnet has been formally approved by the Charter of Trust membership to join its ranks as an Associate Partner. The Charter of Trust is an organization initiated by Siemens in 2018 because of increasing exposure to cyber-attacks in daily life. Today, its members have transformed it into a unique initiative of leading global companies and organizations working together to make the digital world of tomorrow safer.

 

“Acceptance into the Charter of Trust is a significant achievement for our organization,” said Tyson Johnson, CEO, CyberNB | CIPnet. “Our vision, mandate, and 4-pillar strategy are closely aligned with the 10 principles of the Charter of Trust, and we appreciate the recognition of this by our global industry peers.”

 

Siemens Canada supported CyberNB | CIPnet’s candidacy into the Charter of Trust, and three of the Charter’s founding members – Siemens, IBM, and CISCO – are also members of CyberNB’s CIPnet (Critical Infrastructure Protection Network).

 

More information about the Charter of Trust and its 10 Principles that are fundamental to a secure digital world can be found at https://www.charteroftrust.com/about/.

CyberNB et « Quantum-Safe Canada » annoncent leur partenariat

Nous sommes ravis d'annoncer notre partenariat avec Quantum-Safe Canada, qui situé à Waterloo. La collaboration et l'innovation, dans le domaine de la cryptographie et de l'informatique quantique, seront essentielles pour assurer la pérennité de l'infrastructure canadienne. Nous travaillerons ensemble pour stimuler la collaboration et des projets d'innovation conjoints afin de faire avancer le mandat de protection des infrastructures essentielles de nos membres CIPnet et de nos partenaires internationaux!

Teams from Nashwaaksis Middle School place 1st and 2nd in National CyberTitan Championship

Congratulations to the CyberDragons teams from Nashwaaksis Middle School, who placed 1st and 2nd in the CyberTitan National Middle School Division Championships. 

 

The CyberDragons1 team pictured at left (Peyton Jardine-Tobin, Mattias Zaat, Matthew Golden, Simone Dickeson, and Anthony Cruickshank) won first place in the national cybersecurity competition, earning them a spot at the High School CyberTitan national competition held virtually later this spring. 

 

The CyberDragons2 team (Cameron Rogers, Graydon Andrew, Aiden Daley, and Cameron Lockhart) are the first ALL GRADE 6 TEAM to place nationally in the competition. Definitely a team to keep an eye on in next year’s competition! 

Frontline Safety and Security Article

New Brunswick Office of the Fire Marshal, in partnership with DRDC’s Canadian Safety & Security Program, CyberNB, the Atlantic Provinces Trucking Association, and Emergency Solutions International (ESI) Collaborate on Initiative to Ensure Secure Shipment of Hazardous Materials

 

Between 2009 and 2011, community risk assessments were conducted by Defence Research Development Canada (DRDC) across Canada. It was determined the top challenges around accidents during ground transportation of Hazardous Materials were:

  • Incidents often required resources beyond the community’s capabilities; 
  • Responders often were challenged to identify detailed specifics about the load;
  • Incidents caused costly disruption to the supply chain, such as closure of critical trucking routes, while materials were identified and tactical mitigation was performed.

Link to full article:  https://security.frontline.online/news/16002/trucked-hazmat

CyberNB | CIPnet invited to join the Paris Call for Trust and Security in Cyberspace

Newly-formed working groups will grow the community, improve supporters’ cybersecurity and further commitment to a peaceful cyberspace

 

CyberNB | CIPnet is pleased to join more than 375 organizations from 79 countries across the globe on the Paris Call. The Paris Call for Trust and Security in Cyberspace is a global initiative to come together to face the new threats endangering citizens and infrastructure. Working Groups give supporters of the Call the opportunity to engage in a concrete way, giving substance to the principles of the Call. CyberNB | CIPnet will join Working Group 6 on Concrete Tools for Supporters, initially focusing its work on the security of ICT products and services.

 

When the French Minister of Europe and Foreign Affairs, Mr. Jean-Yves Le Drian, announced the creation of Working Groups at the Paris Peach Forum in November, he stressed that it is only through the involvement of all stakeholders that we will be able to achieve a free, open and secure cyberspace. This mandate aligns with CyberNB | CIPnet’s mission to collaborate with industry, government and academia for society’s common good – the collective advancement of the cybersecurity sector and organizations committed to keeping cyberspace safe.

 

Our CI-SOC initiative, specifically, enables critical infrastructure partners to improve their individual and collective cybersecurity by coordinating threat intelligence to stop more attacks, detect attacks earlier, contain breaches faster, reduce breach impact and recover more quickly. Read more here: https://cybernb.ca/CI-SOC.htm

CyberHatch Incubator & Accelerator to Grow Cybersecurity Talent in New Brunswick

New program from CyberNB will invest millions, drive immigration and create jobs in the province

 

December 3, 2020 – Fredericton, NB – CyberNB Inc. is pleased to announce the launch of CyberHatch, a cybersecurity incubator and accelerator program that will be housed in the newly constructed Cyber Centre beginning in Q1 2021. Supporting partners include Keiretsu Forum, the largest angel syndicate in the world, the New Brunswick Innovation Foundation (NBIF), Knowledge Park, and Mitacs, who will contribute millions of dollars per year along with industry mentorship to companies entering CyberHatch. Planet Hatch and Keiretsu Forum will also provide visa sponsorship for global companies entering the incubator or accelerator.

 

Cohorts of five companies will enter CyberHatch at a time, with four cohorts expected per year. Eligible companies will be start-ups or scale-ups, specifically those involved in the development of secure technologies for the protection of critical infrastructure. Companies from anywhere in the world are invited to apply, and those who qualify will relocate their founders and executives to New Brunswick to work, collaborate and have their technologies tested and validated at the Cyber Centre.

 

Read More