This library of reference materials contain documents published by authoritative and informed sources that can assist your organization with practical, helpful guidance towards reducing cybersecurity risks and protecting personal information.
For the purposes of this Library, sources are defined as:
Summary of contents
Short, straight-forward advice on Securing Networks and SystemsSecuring the End UserResponding to a Compromise/AttackAuthoritative Source: Center for Internet Security
Summary of contents
A brief summary for executives with suggestions on how to address physical, supply chain, and cybersecurity issues that may arise from the spread of Novel Coronavirus, or COVID-19.Summary of contents
Recommendations from a lawyer specializing in cybersecurity on managing COVID-19 cybersecurity risks from a people, process and technology perspective. Includes an extensive list of best practice guidance documents from authoritative sources in Canada, the United States, UK, Europe and Australia.Informed Source: BLG (Borden Ladner Gervais LLP)
Summary of contents
Protect against fakes- Against Malicious Emails- Against Malicious Attachments- Against Malicious WebsitesAuthoritative Source: Canadian Centre for Cybersecurity
Summary of contents
Authoritative Source: Australian Cyber Security Centre
Summary of contents
Practical recommendations for staff. Examples:Authoritative Source: US Federal Trade Commission
Summary of contents
Authoritative Source: National Cyber Security Centre
Summary of contents
Authoritative Source: Cyber Readiness Institute
Summary of contents
Practical advice designed to be shared with teleworking home and remote office users.Authoritative Source: National Institute of Standards and Technology (NIST)
Summary of contents
A shareable PDF with practical guidance for working outside of the office.
Authoritative Source: National Cyber Security Alliance
Summary of contents
Authoritative Source: BC Office of the Information and Privacy Protection Commissioner (OIPC)
Summary of contents
Authoritative Source: Canadian Centre for Cybersecurity
NIST Special Publication 800-177 Revision 1 February 2019
Summary of contents
A technical reference for small to medium organizations.Authoritative Source: National Institute of Standards and Technology (NIST)
Summary of contents
Why You Need Your Emails Encrypted1. ProtonMail – The Most Well-Known Email Service Provider2. Mailfence – End-to-End Encryption + Digital Signatures3. Hushmail – Oldest Secure Email ServiceFAQsInformed Source: Privacy Canada
Summary of contents
Guidance from a lawyer in Vancouver specializing in cybersecurity. Recommendations are based on controls published by the Canadian Centre for Cybersecurity, with specific suggestions on:Informed Source: BLG (Borden Ladner Gervais LLP)
Authoritative Source: BC Office of the Information and Privacy Protection Commissioner (OIPC)
These controls are the ones that are used when evaluating Partner Agencies through the SCsIP Cybersecurity Assessment project.
For a downloadable PDF version of these standards, click here.
Summary of contents
Clear, easy to understand recommendations designed specifically for small and medium sized organizations by the Canadian Government. Systematically reviews an organization’s cyber security profile on the following topics:Authoritative Source: Canadian Centre for Cyber Security
BC.9.2
Suggested DNS firewall service:
Informed sourceBC.9.7
Configuring with GSuite systems:
Configuring Microsoft 365
Informed sourceBC.11.2
ASVS levels
Summary of contents
Authoritative Source: <Insert source, Linked URL>