Canadian Securities Administrator Issues Call to Action on Cyber Security

March 02, 2017

Canadian Securities Administrator Issues Call to Action on Cyber Security

Synopsis
2 Minute Read

In light of escalating cyber attacks on a global scale, the Canadian Securities Administrator (CSA) recently published a notice urging immediate action to strengthen cyber security awareness, preparedness and resilience in Canadian capital markets.

Partner, National Leader, Internal Audit Services

In light of escalating cyber attacks on a global scale, the Canadian Securities Administrator (CSA) recently published a notice urging immediate action to strengthen cyber security awareness, preparedness and resilience in Canadian capital markets.

This guidance is significant and timely for all businesses. Pointing out the seriousness of cyber risks, the notice outlines the CSA’s initiatives and its expectations for market participants to proactively manage cyber security. Some of the areas of focus include:

  • Firms’ cyber security risk assessment and information security governance programs;
  • Firms’ IT safeguards and controls;
  • Use of encryption;
  • Risks related to third-party service providers;
  • Vulnerability tests and compliance monitoring;
  • Evidence of regular employee training and awareness;
  • Incident response plans, and
  • Practices for accepting client instructions to withdraw or transfer funds via electronic means.

Another recent development makes cyber security an even more pressing imperative at home. Canada's new Digital Privacy Act has introduced a mandatory breach notification: starting this year, any organization that experiences the loss or theft of personal information putting people at "real risk of significant harm" will be required to notify the Office of the Privacy Commissioner as well as the individuals affected.

Failing to do so could result in fines of up to $100,000 per offence.

Without adequate protection, cyber threats can put a business's operations, reputation – even its existence – at risk. Vigilant cyber security assessment, planning and testing are now critical to protect your bottom line.

For more information, contact Geoff Rodrigues, CPA, CA, ORMP, CIA, at 1.877.251.2922 or [email protected].

Insights

  • Progress

    May 20, 2022

    Enhanced hospital GST / HST rebates for long-term care facilities

    If you operate a long-term care facility and are currently only claiming the GST / HST rebate for charities or qualifying not-for-profit organizations, it may be time to revisit your eligibility for an enhanced hospital rebate announced in the 2022 Federal Budget.

  • Agility

    May 19, 2022

    Crypto asset mining – A review of recent proposals

    Proposed amendments to tax rules around crypto assets could impact business engaged in crypto mining activities. We explore how new definitions shift GST / HST costs under the proposed changes.

  • Agility

    May 17, 2022

    The power of putting people first

    For your organization to thrive in a modern and competitive workforce, you may need to shift your mindset and your approach towards employee satisfaction.