Resources

This page is currently under construction.

Everyday we hear about worrisome cyber threat activity and the effect it has on the information and services we rely on.

Here are some links to help understand Canada’s cyber threat landscape:

The Canadian Centre for Cyber Security's most recent National Cyber Threat Assessment 2025-2026 provides a snapshot of cyber threats affecting Canada and Canadians and forecasts how they may evolve in the coming years.
The Cyber Centre’s publication, An Introduction to the Cyber Threat Environment is a helpful primer
The Cyber Centre's Cyber Threat Bulletins provide timely updates on specific cyber threats, including zero-day vulnerabilities, active phishing campaigns, and ransomware outbreaks. Organizations can subscribe to receive notifications and use these briefings to adjust internal security measures, update software, or notify staff of specific risks.

Should my business or organization be concerned with cybersecurity?

Unless you are a pop-up stand selling lemonade for cold, hard loonies, it is in your organization’s best interest to think seriously about cybersecurity. Even basic cybersecurity measures can help protect businesses and organizations that rely on connected information systems that hold personal, financial or proprietary information interact with the public, clients or partners.

Hub Members Recommend:

The Canadian Chamber of Commerce's 6 Reasons Why Your Small Business Should Be Thinking About Cyber Security.
The Cyber Centre's Baseline Cyber Security Controls for Small and Medium Organizations, as well as,Top Measures to Enhance Cyber Security for Small and Medium Organizations (ITSAP.10.035).

What should my organization consider when developing a cybersecurity incident response plan?

Hub Members Recommend:

The Province of British Columbia's Incident Response resource page (includes an incident response plan template).
The Cyber Centre's Developing an Incident Response Plan.

My organization has been impacted by a ransomware attack. What should I do?

Hub Members Recommend:

The Ransomware Playbook provides clear, actionable steps for preparing for, responding to, and recovering from ransomware incidents. It includes templates, escalation workflows, backup strategies, legal considerations, and communication planning. A must-read for any organization that cannot afford extended downtime or data loss.
Report a Cyber Incident / Contact CCCS, this page explains how to report incidents like ransomware attacks, data breaches, and suspected nation-state intrusions to the Canadian Centre for Cyber Security. It also provides contact info and expectations around CCCS's role in assisting incident response, especially for critical infrastructure and public sector clients.

My organization holds the personal and financial information of BC residents. What do I need to consider in safeguarding this information?

Hub Members Recommend:

The Province of British Columbia's Guidance for Privacy Impact Assessments offers examples and prompts for thinking through how organizations can reduce risk and protect privacy.

We hear a lot about compromised user credentials. How can small organizations protect their access information?

By using passphrases or strong passwords you can protect your devices and information. Make sure they are not reused or shared to avoid additional risk of compromise. Layering on multi-factor authentication further reduces your risk.

Hub Members Recommend:

Some enduring guidance for credential hygiene for the Cyber Centre.
Using a good (and Canadian!) password keeper. Additional guidance about password managers can be found here.

How do I know what are the right cybersecurity measures for my business or organization?

Organizations typically select a cybersecurity “standard” that aligns with their needs. Standards are often published by consensus among industry experts and provide guidelines, best practices, and procedures to enhance an organization’s cybersecurity posture. Organizations use the selected standard to identify and implement the most useful measures to protect their systems, data, and infrastructure from cyber threats.

Hub Members Recommend:

Data Guard's Cyber Security Standards - All You Need to Know.
The Cyber Centre's Get Cyber Safe Guide for Small Businesses.

My organization is very small and does not have dedicated resources for cybersecurity. Can I hire a service to help keep us safe in cyberspace?

Hub Members Recommend:

Best Startup's 48 Top Cyber Security Startups and Companies in British Columbia - BestStartup Canada.
The Cyber Centre's Get Cyber Safe Guide for Small Businesses
Buy Canadian Cyber.
Rogers Cybersecure Catalyst is Toronto Metropolitan University’s national centre for training, innovation and collaboration in cybersecurity.

Is there any additional guidance for public sector organizations, like municipalities and Indigenous governing bodies?

Hub Members Recommend:

CyberBC is designed to collaborate with broader public sector organizations to assist in enhancing their cybersecurity posture. Specifically, the resources help create cybersecurity strategies, assess weaknesses and potential threats, and minimize risks to safeguard partners against cyber threats.

My lead for cybersecurity is seeking an opportunity to be mentored by someone in the local CISO community.

Formal and informal mentoring relationships can go a long way to broaden the perspective of cybersecurity professionals, continuing their professional development, and creating a trusted space for advice and guidance. The more personal connections made, the stronger the overall community and network of cybersecurity expertise in BC.

Hub Members Recommend:

The Vancouver chapter of ISACA offers a mentorship program.