data governance

New national data access standard will make Canadian companies more competitive

Gene Villeneuve

Data integration and open collaboration with third-party vendors are essential elements of staying competitive in today’s marketplace. From email, to service delivery, to a host of other important functions, most companies could not operate nearly as efficiently without these integrated alliances.

But while partnering on business-critical tasks has been crucial for years, creating a trusted IT  environment to facilitate these interactions has in many cases been slower to materialize – even though it’s vital in a post-coronavirus world where remote service delivery and at-home workforces have become commonplace.

Indeed, creating a trust environment from scratch isn’t easy – especially when organizations don’t know where to start, or whether they’re doing things correctly. That challenge is evident in the numbers: According to the UK’s National Cyber Security Centre, a record number of cybersecurity incidents occurred between September 2019 and August 2020, many of them Covid-19 related. 

Clearly, companies across the globe still have work to do to safeguard their internal IP and customer data.

That’s why the CIO Strategy Council recently announced a new National Standard of Canada for third-party access to data, aimed at helping Canadian organizations “safeguard their data assets and become more efficient in a data-driven economy.” The standard specifies a set of minimum requirements and privacy controls for third-party access to data for all organizations, from not-for-profits, to startups, to academic institutions, to major publicly-traded corporations or government departments and agencies. 

Entitled CAN/CIOSC 100-2:2020 and available for viewing in its entirety here, the new standard was prepared by the Council’s Technical Committee on Data Governance, made up of 100 experts and thought leaders across the country from industry, government, academia and other domains. It offers a framework and guidelines to Canadian businesses who regularly share access and data with third parties. Essential aspects of the new standard include:

  • Risk management
  • Logical and physical access controls
  • Confidentiality
  • Availability
  • System operations

Tehama founder and CEO Paul Vallée says the new national standard, which provides a strong framework to help companies secure their data the right way, will help make Canadian companies more competitive in the international marketplace.

“The CIO Strategy Council is driving a very innovative standard for third-party data access that, when adhered to, will differentiate Canadian organizations in the global market due to the enhanced duty of care to prevent data breaches and IP theft,” he says. “Tehama is proud to have been a primary contributor to this essential standard to create a trusted environment for third-party data access. At Tehama, we provide solutions that secure and audit all third-party access to data and systems.”

The national standard is available at no cost and in both official languages. 

If you’re interested in understanding how remote work is re-shaping Canada’s Public Sector, join us on Nov 17 for a live panel discussion with leaders from Tehama, Bitnobi, Cloudshift and Invest Ottawa. 

Re-defining remote work for Canada's public sector

More Posts