CANARIE, through its Cybersecurity Initiatives Program (CIP), is funding the Canadian Shared Security Operations Centre (CanSSOC) to deliver its Threat Feed service to eligible research and education (R&E) organizations at no cost. The CanSSOC Threat Feed uniquely serves the R&E sector by identifying emerging threats based on intelligence shared among trusted national and global partners.
Launched in November 2020, the CIP funds priority initiatives that strengthen the cybersecurity of Canada’s research and education sector with advanced technologies, improved processes, and broadened expertise. These initiatives are reviewed and recommended for funding by the Cybersecurity Advisory Committee and delivered to eligible organizations through the provincial and territorial partners in Canada’s National Research and Education Network (NREN), in which CANARIE is the federal partner.
CanSSOC’s Threat Feed aggregates and curates threat intelligence from public and private cybersecurity organizations and open-source feeds to deploy directly into organizations’ existing firewalls to block malicious traffic. Once deployed, the service gives organizations the flexibility to automatically block suspicious activity or to manually monitor and prioritize threats. The Feed consolidates and curates threats observed and shared within R&E organizations, providing real-time intelligence about threats specifically targeted at the sector.
To opt-in for the CanSSOC Threat Feed initiative, organizations must first enrol in the Cybersecurity Initiatives Program. To confirm your organization’s eligibility for the CIP or to initiate enrolment, please contact the NREN Partner in your province or territory. Given their ongoing engagement with member organizations in their jurisdictions, CANARIE’s NREN Partners play a critical role in delivering funded initiatives.
Organizations that have already enrolled in the CIP will be contacted by NREN Partners with instructions for opting in for the Threat Feed initiative. Organizations that are already participating in the CanSSOC Threat Feed Pilot can continue to use the service but must also enrol in the CIP.
All initiatives funded through the CIP are intended to integrate with each other to strengthen cybersecurity at the organization level, and in turn the overall security of the entire sector.
At right is a recording of a webinar hosted on May 18 (in English) explaining the CanSSOC Threat Feed initiative and how it can benefit your organization.
A French version of that session can be viewed here.