Successful prevention, detection and mitigation of cyber security threats is reliant on strong community participation and collaboration. With this in mind, the Canadian Shared Security Operations Centre’s (CanSSOC) offering of threat intelligence initiatives is focused on leveraging and integrating the cyber security skills, resources and tools within Canada’s collective higher education community.
Partnerships with members of the Canadian National Research and Education Network (NREN) and other sector organizations, such as the Canadian Internet Registration Authority (CIRA), have been instrumental in supporting this approach.
CanSSOC is also supporting ongoing work to develop a coordinated and collaborative national approach to higher education cyber security. CANARIE is convening communities of interest and providing funding to support this approach. CanSSOC has been selected by the Cybersecurity Advisory Committee (convened by CANARIE) to provide the CanSSOC Threat Feed platform to all NREN-connected institutions as part of CANARIE’s Cybersecurity Initiatives Program. (More information on this development will be shared in the coming months).
CanSSOC is also working to streamline access to its pilot initiatives for members of ORION’s Ontario Cybersecurity Higher Education Consortium (ON-CHEC). Ontario institutions can inquire about participating in CanSSOC pilots by emailing ORION at CommunityDev@orion.on.ca or by submitting an expression of interest online. CanSSOC is exploring opportunities for similar partnerships with other NREN organizations.
Lastly, CanSSOC is exploring a collaboration that will integrate the Threat Feed platform into CIRA’s DNS Firewall service. The Threat Feed consolidates multiple threat information sources into a single curated feed and CIRA’s DNS Firewall provides protection against malware and phishing attacks by blocking access to malicious websites. Any CanSSOC member that subscribes to this firewall will be able to also access Threat Feed intelligence as part of the service, adding value to both tools.
Through these new partnerships, a small group of organizations and universities have volunteered to participate as early-adopter CanSSOC members. Alongside the six founding members, they will help explore, develop and test ways to serve a wide range of cyber security needs. The early-adopter members include:
- ORION and Niagara College (via ON-CHEC)
- The University of Winnipeg
“We’re excited to work with institutions to maximize the value of the national services we’re developing,” says CanSSOC Director Jill Kowalchuk. “As our member community grows, the power of the collective will enable everyone to effectively respond to cyber security issues across the country.”
As CanSSOC’s Threat Feed platform evolves and as other pilot initiatives are launched, CanSSOC will expand its enrolment of other early-adopter members. Bringing members on board in stages will enable universities, colleges and other partners to have direct input at all phases of pilot development, ensuring tools and deployment tactics will be fit-for-purpose and community-focused.
Looking ahead, CanSSOC is investigating other opportunities to provide value to the community in ways that leverage the power of the collective. Suggestions and questions are welcomed at any stage of the pilot by emailing firstname.lastname@example.org.
Interested in becoming a CanSSOC member institution for an upcoming phase of the Threat Feed pilot? Click here to learn more about the service or contact Jill Kowalchuk (email@example.com).