Canada Launches Comprehensive Cyber Security Certification Program to Fortify Defence Industry
Ottawa, Canada – In a significant move to enhance national security, the Government of Canada has announced the establishment of the Canadian Program for Cyber Security Certification (CPCSC). This initiative is designed to strengthen the cyber security framework within the Canadian defence sector, aiming to protect against increasing cyber threats from both state and non-state actors.
The CPCSC is set to introduce mandatory certification requirements for select federal defence contracts by winter 2024. This measure is not just about compliance but is geared towards building resilient supply chains that are critical to national security. By fortifying their cyber security defenses, Canadian suppliers will also be well-positioned to seize opportunities in international procurement.
The announcement was made by the Honourable Anita Anand, Canada’s Minister of National Defence, on behalf of the Honourable Helena Jaczek, Minister of Public Services and Procurement. The government is partnering closely with Public Services and Procurement Canada, the Department of National Defence, and the Standards Council of Canada to design a certification framework that incorporates input from the defence industry and other stakeholders.
Upcoming consultation sessions scheduled for late 2023 will be critical in shaping the CPCSC. The government is eager to engage with industry players to ensure the certification process meets their needs and enhances Canada’s overall cyber security posture.
According to GlobalData’s report on the Canadian Defence Market (2022-2027), Canada’s highly digitized economy makes it particularly vulnerable to cyberattacks. The new certification program has been deemed essential in securing critical supply chains against malicious cyber activities. Failure to obtain certification could restrict Canadian suppliers from competing in future international defence procurement opportunities, posing a detrimental impact on Canada’s defence sector.
In a bid to ease the regulatory burden on the industry, the CPCSC will pursue mutual recognition agreements with the United States. This initiative means that certified Canadian suppliers will be recognized by U.S. authorities, thereby streamlining the certification process across both jurisdictions and enabling greater cooperation in defence procurement.
Minister of Innovation, Science, and Industry François-Philippe Champagne highlighted the program’s importance, stating, “With this new certification, we are protecting our critical supply chains and ensuring Canadian suppliers can continue to play a key role in the U.S. defence procurement supply chains. This is essential for the growth of our industry and job creation across Canada.”
As part of Budget 2023, the government has allocated $25 million over three years to support the implementation of the CPCSC. This funding will play a crucial role in maintaining access for Canadian companies to international procurement opportunities that require mandatory cyber security certification.
Moreover, the CPCSC aligns with Canada’s National Cyber Security Action Plan and National Cyber Security Strategy goals, reinforcing the need for robust measures to safeguard networks, systems, and applications used by defence companies.
As cyber threats continue to evolve, the introduction of the Canadian Program for Cyber Security Certification represents a proactive step in ensuring the security and resilience of Canada’s defence industry, fostering trust and cooperation both domestically and with international allies.
