Through this report, cybersecurity professionals have indicated just how much their responsibilities have changed over the last year in the face of these mounting threats. Accordingly, 96 per cent of organizations indicate that they conduct mandatory cybersecurity awareness training for at least some employees. This is a notable increase since the start of the pandemic when only 87 per cent conducted such training.
A trend that was both unexpected and encouraging saw 63 per cent of respondents indicate that data sovereignty—the principle of ensuring user data and traffic stays in Canada—was a major consideration for cybersecurity professionals when seeking cybersecurity vendors, beating out price as a factor.
Of course, government plays a significant role in helping protect Canadians online—both through legislation and programs that enhance the cybersecurity landscape. Bill C-27, The Digital Charter Implementation Act—which could have a significant impact on how user data is protected and stored—is currently making its way through Parliament. However, only 55 per cent of cybersecurity professionals were aware of the bill. Notably, nearly six-in-ten (59 per cent) of those who were aware of the bill stated that they were concerned about how it could affect their organization. This highlights the need for more government outreach on this pending legislation, explaining its impact on Canadian organizations of all sizes.