Earlier this month, CANHEIT 2021 hosted Canada’s largest virtual gathering of higher education IT leaders. Throughout the week-long program, CanSSOC team members co-presented talks with NREN partners and institutional leaders, highlighting their collaborations and community-focused approaches to cyber security detection and response.
“We always look forward to CANHEIT,” says Jill Kowalchuk, CanSSOC Director. “This year was particularly exciting for CanSSOC and its partners, as we had lots to share with the community about current federated activities as well as our plans for the future.”
CanSSOC’s sessions at CANHEIT 2021 are listed below and recordings of each are available to view on CanSSOC’s YouTube channel.
In this panel session, Jill Kowalchuk (CanSSOC), Gayleen Gray (McMaster University), Isaac Straley (University of Toronto), and Chad Coller (SRNET) discussed how their respective efforts in threat detection and response work to complement and support each other, raising Canada’s collective defence against cyber security threats.
This panel highlighted how three National Research and Education Network (NREN) partners collaborate with CanSSOC with a focus on sharing actionable intelligence. BCNET and ORION presented on the services and solutions provided to their members. MRnet presented on their shared CISO model, and how it supports its members in developing their information security programs and posture.
In this panel, Jill Kowalchuk (CanSSOC), Dave O’Loan (AARNet), Lee Harrigan-Green (Jisc), and Martin Vezina (McGill University) spoke about a new global partnership to help higher education institutions around the world prevent and mitigate cyber attacks through shared intelligence. They also discussed some of the current cyber security challenges facing the international community.
This presentation by David Auclair (CanSSOC) discussed how statistical anomaly detection techniques can be used to find compromises that would otherwise slip through the cracks.
This presentation provided a brief overview on the CanSSOC Threat Feed service, recently launched as part of the CANARIE Cybersecurity Initiatives Program. Representatives from three institutions shared how they are leveraging the Threat Feed within their institutions. The presentations touched on integration into Gateway Routers, SIEM services, CIRA DNS firewall, SOAR platforms, and XDR endpoint solutions.
In this session, Dennis Hayson Wong (CanSSOC), Paul Webber (Ryerson University), and Rob Milman (SAIT) discussed tools and tactics for monitoring and managing threat intelligence data.
If you have any questions about CanSSOC’s presentations from CANHEIT, contact us.