Home » Canadian Cybersecurity Legislation Lacking, Survey Finds

Cyber Security NewsSecurity Leadership and ManagementCyberSecurity Newswire

Canadian Cybersecurity Legislation Lacking, Survey Finds

October 17, 2019

A survey by Keyfactor revealed that 87 percent of surveyed cybersecurity professionals think more privacy and security legislation is required to better protect Canada’s businesses and consumers.

“While the federal government continues to introduce cybersecurity consortiums and guidance, professionals on the front lines know that consortiums do little to protect their business and consumers from attacks and data loss,” said Chris Hickman, chief security officer at Keyfactor. “The resource divide that exists across small and large enterprise, combined with standards inconsistencies, make us vulnerable to attacks.”

According to the survey, 58 percent of respondents think regulators and elected Canadian officials are not doing enough to standardize security guidance on measures like data encryption.

“Many of today’s large-scale breach events are the result of basic security measures that are overlooked or neglected,” said Hickman. “Attackers looking for low-hanging fruit are commonly able to infiltrate a business’s network – and its customers – by compromising vulnerable IoT (Internet of Things) devices or stealing highly sensitive keys and digital certificates.”

Public Key Infrastructure (PKI) is a tried and tested security tool that protects digital identities across people, software and technology. However, PKI management remains a manual process for many organizations.

The survey also found that:

50 percent of respondents cite manual and complex processes as their greatest challenge in managing PKI
43 percent of respondents were most concerned about their ability to securely adopt DevOps, cloud and IoT

“As the federal election looms, Canadians should closely evaluate each party’s cybersecurity pledge and what it means to their own digital security as an online consumer,” said Hickman. “Broadly, whether large or small, Canadian businesses are struggling with IT and security resourcing. Without stronger government standardization and actionable support, businesses and consumers downstream face rising security risks.”

Survey results were gathered through surveys conducted with IT security professionals at SecTor, an IT security education conference.

You must login or register in order to post a comment.

2019 State of Organizational Resilience Report: Global Trends, Data and Analysis

Critical events can vary widely in type and size – from natural disasters to workplace violence – and a drawn-out response can lead to significant operational losses, brand damage, and concerns for health and safety. Organizational Resilience is the ability to identify, prepare for, and resolve these critical events, which is a vital trait for any mature institution.

The 2019 Security 500 Report will unveil the top 10 trends CSOs and enterprise security executives are facing today and how each of them could impact the enterprise’s global reputation with the public, governments and business partners.

Poll

Emergency Communications

View Results

Poll Archive

Products

Effective Security Management, 6th Edition

Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics.

See More Products

Security Magazine

2019 November

This month, Security magazine brings you the Security 500 Report, Rankings and Thought Leader Profiles. How does your enterprise compare to others? Which security programs are leading the way? Also this month, we highlight artificial intelligence, ransomware attacks, vaping and cybersecurity regulations.

View More Create Account

Canadian Cybersecurity Legislation Lacking, Survey Finds

Related Articles

Related Events

Report Abusive Comment