In today’s digital age, organizations are faced with online threats from cyber criminals that could jeopardize their lines of business and expose personal and sensitive data. Industrial Internet of Things (IIoT) devices need to have adequate protection to minimize such threats.
The CIO Strategy Council is pleased to announce the publication of a new National Standard of Canada that specifies the minimum cyber security controls for the design and operation of IIoT devices to meet requirements for security, safety, confidentiality, integrity, and availability for the electrical sector.
The National Standard of Canada, CAN/CIOSC 105:2022– Cybersecurity of Industrial Internet of Things (IIoT) Devices, is intended for organizations that are planning to acquire new IIoT devices or equipment embedding IIoT devices. The Standard is part of the Natural Resources Canada multi-year investment under the Cyber Security and Critical Energy Infrastructure Program to address vulnerabilities in our critical energy infrastructure.
“With disruptive innovations happening across Canada and over the world, Over the coming years, more and more IIoT devices are surfacing and becoming an integral part of everyday life. They often carry important and high-valued information, for the users as well as for other stakeholders, that needs to be safeguarded and protected. We have seen many data and cybersecurity breaches occur in the past that have posed threats to people and organizations, costing millions of dollars to resolve. This National Standard of Canada will provide guidance to organizations concerning the implementation of sound cybersecurity measures needed to protect their IIoT devices and prevent future cyber-attacks.”
— Gurvinder Chopra, Vice President- Standards and Regulation, Electro-Federation Canada (EFC)
“We have seen a significant increase in the growing use of and spend on IIoT devices coupled with a lack of global cybersecurity standards which has created new challenges. Cybersecurity is integral to safeguarding Canadian citizens, their information, economy and critical infrastructure. The need has never been greater as threats evolve and threaten to disrupt our daily lives. Developing and implementing global cybersecurity rules for sensors and IIoT devices has become challenging but necessary in order to be able to respond to threat of attacks on critical infrastructure through existing IIoT devices. CAN/CIOSC 105 provides a consolidated overview of key security features and practices that are recommended as industry standards and best practices.
— Darryl Kingston, Senior Director Standards, CIO Strategy Council (CIOSC)
For media inquiries:
Julia Hancock
Senior Project Manager, Standards
CIO Strategy Council
julia.hancock@ciostrategycouncil.com
About the CIO Strategy Council
The CIO Strategy Council is Canada’s national forum that brings together the country’s most forward-thinking chief information officers and executive technology leaders to collectively mobilize on common digital priorities. Cutting across major sectors of the Canadian economy – public, private and not for profit – the Council harnesses the collective expertise and action of Canada’s CIOs to propel Canada as a digital-first nation. The CIO Strategy Council is accredited by the Standards Council of Canada and develops standards that support the data-driven economy.
About Electro-Federation Canada
Electro-Federation Canada (EFC) is a national, not-for-profit industry association that represents over 220 member companies that manufacture, distribute, market, and sell a wide range of electrical and automation products. EFC members contribute over $10B to the Canadian economy and employ over 43,000 workers in more than 1,400 facilities across the country. EFC empowers the industry with market intelligence, professional development, and a voice for advocacy and standards advancement within a safe, collaborative environment.