Brian C. McIlravey

GardaWorld Corporation has announced the launch of  ECAM, a North American leader in advanced AI-driven surveillance technology: https://loom.ly/nKSQXNk #Security #SecurityIndustry #GlobalSecurity #GardaWorld #ECAM #NorthAmerica #AI #Surveillance

16

1 Comment

To ensure privacy standards remain effective and aligned with today’s realities, the Digital Governance Standards Institute (DGSI) is launching a 90-day maintenance review of CAN/DGSI 109-2:2024 – Privacy Part 2: Canadian Information Privacy Protection Framework. The standard recognizes the growing complexity of the data landscape and the increasing demands on organizations to demonstrate responsible data stewardship. Whether managing sensitive customer data, employee information, or health records, organizations must navigate a patchwork of federal, provincial, and international rules. CAN/DGSI 109-2 helps simplify this challenge by offering a clear, scalable framework grounded in accountability and best practices. The maintenance review is open until August 12 2025. DGSI invites privacy professionals, industry leaders, legal experts, policymakers, and members of the public to review the standard and provide feedback. 🔗 https://lnkd.in/e3EhQ4S4 #DGSI #DataGovernance #ResponsibleData #Privacy #Digital

3

#CAGE codes can significantly impact the cost of CMMC certification, especially for organizations with a complex structure or multiple business units. The primary driver of this impact is that the #DoD views each CAGE code as a distinct entity that must independently meet #CMMC requirements unless a strategic approach is taken. RSI Assurance RSI Security Why Multiple CAGE Codes Drive Up Costs Individual Assessment Requirements: CMMC compliance is assessed and enforced at the individual CAGE code level. For companies with multiple CAGE codes, this means each code represents a discrete entity that may require its own System Security Plan (#SSP) and CMMC assessment. Without a unified strategy, this can lead to redundant efforts and multiplied costs. Multiplied Documentation and Burden: Each CAGE code that handles #CUI typically needs its own SSP, a detailed document that outlines how the organization meets all 110 NIST SP 800-171 controls. Creating an SSP is a time-consuming and expensive process, and having to do it for multiple CAGE codes increases the cost exponentially. Varied Scope and CUI Flow: Different CAGE code entities may handle different types of Controlled Unclassified Information (CUI), leading to distinct security requirements and different CMMC levels. Mapping the flow of CUI across multiple entities is a complex process that can increase both internal labor costs and the cost of third-party consulting. Strategies to Minimize Costs Companies with multiple CAGE codes can employ several strategies to reduce their compliance costs. The key is to demonstrate to the #C3PAO (Certified Third-Party Assessor Organization) that multiple CAGE codes operate under a single, unified security program. Consolidation under a Single SSP: If a parent company and its subsidiaries (with different CAGE codes) have a high degree of vertical IT integration and use a single, unified security program with shared policies and procedures, they may be able to be assessed under a single SSP. This consolidation significantly reduces the assessment cost and documentation burden. Control Inheritance: Organizations can inherit controls from a parent company's or corporate-level security program. For example, a subsidiary might inherit corporate-wide policies for physical security, background checks, and IT governance, reducing the number of controls it needs to implement and document on its own. Cost-Benefit Analysis: A company should evaluate the DoD contract revenue associated with each CAGE code. For entities that only have a small amount of DoD business, the cost of full CMMC compliance may outweigh the benefits. The number of CAGE codes an organization has directly impacts the cost of CMMC certification by multiplying the compliance obligations. However, a strategic approach that leverages consolidation, control inheritance, and a clear understanding of the CUI environment can significantly mitigate these costs.

1

The Canadian Association of Security Professionals (CASP) Roy Jensen is hosting an online conference on March 12th. #SAVETHEDATE The #conference has a keynote and speakers talking about the present and future of the Canadian #security industry: challenges, best practices, future directions. 𝗗𝗮𝘁𝗲: 12 March 2026 𝗧𝗶𝗺𝗲: 1200 – 1800 EDT 𝗖𝗼𝘀𝘁: $20.00 (50 $ off with code CASP50) 𝗧𝗶𝗰𝗸𝗲𝘁𝘀: https://lnkd.in/g4U5M34c Register using "CIWHV admission", and proceeds from these sales will go to the Canadian Institute of Workplace Harassment and Violence to help injured workers seek legal guidance and treatment. 𝗔𝗯𝗼𝘂𝘁 𝗖𝗔𝗦𝗣. Security guards are increasingly taking on roles formerly held by police: patrolling high-risk areas, walking beats, issuing bylaw and transit tickets, responding to alarms, etc. Police receive 10 to 12 months of training and regularly recertify their training. Security guards receive one week of training and are not required to recertify ever again! Simply, security guards are not prepared for the challenging, dangerous, and litigious environments they are expected to engage in. On-duty injuries and deaths are increasing. More security guards are being charged with criminal offenses -- they are not getting the necessary training! Over the past year, CASP has published articles detailing issues in the industry, recommended solutions, and worked with subject matter experts (including #traumainformed training, prevention of workplace psychological hazards, and improved #psychologicalsafety) to develop courses. CASP strives to professionalize the security association through #training and #advocacy. Details at www.CASP.ca

16

1 Comment

Introducing a new SecuRESafe (SRES) training program on the ISO/IEC TS 22440—industry‑agnostic and purpose‑built to bridge the gap between traditional functional safety and the emerging realities of AI‑based safety functions and AI‑enabled development tools.

11

#ManuSec Canada, Canada's leading Cyber Security for Critical Manufacturing summit, will be back in 𝗧𝗼𝗿𝗼𝗻𝘁𝗼 on 𝗔𝗽𝗿𝗶𝗹 𝟭𝟰𝘁𝗵 - 𝟭𝟱𝘁𝗵 with an A+ List line-up of speakers to discuss the challenges of building #CyberResilience. The event promises 6+ hours of networking to share and learn from an audience of manufacturing security leaders from companies such as Mercedes-Benz Canada, ABB, AstraZeneca, Unilever and many others. To guarantee that the most up-to-date and relevant topics are addressed, we collaborated with a Steering Committee of industry experts to gain first-hand insight into the challenges faced by manufacturing organisations across Canada. This year’s Steering Committee brought together experienced IT and OT security professionals, including: 💡 Anjay Kuarsingh, IT Director - Global Operations & Infrastructure, kdc/one 💡 Gord Howells, Vice President, Information Technology, Sofina Foods Canada. 💡 Greg Sharma, Director – IT Infrastructure, Maple Lodge Farms 💡 Robert Murdoch, CISO, Maple Lodge Farms 💡 Brian Cullen, VP, Global Operations & CISO, Rakuten Kobo Inc. 💡 Angela Polanski, Director of Technology, Tolko Industries 💡 Manoj Tiwary, Chief Information Officer, Subaru Canada Inc 💡 Raghu Jaswal, Senior Manager Global Information Security, IKO North America 💡 Harry Brar, Director of Cyber Security and Information Technology, NewAge Products Inc. 💡 Shawn McBurnie, Head of IT/OT Security and Compliance, Northland Power Inc. 💡 Alexandre Pacheco, Director, Cyber Security Consulting, PwC - PwC Canada 💡 Dave Cullen, Partner, Kutoa Technologies 💡 Jose M Seara, Founder & CEO, DeNexus 💡 Joshi Komban, Regional Information Security Officer, Philip Morris International 💡 Umar Hossain, Global Leader | IT & Cyber Security, MATTR 💡 Vishal Shrivastava, Principal Consultant and Program Director, NTT DATA 💡 Ali Dehghantanha, CEO, Avaly.ai You can take a look at the 2-day programme and speaker line-up here https://lnkd.in/dmV-4nkb  SPECIAL OFFER: Register today and save CA$400 off your pass as part of our Early-Bird offer at https://lnkd.in/dJYnsEVi 

41

4 Comments

Security Industry Announcement for immediate release Monday November 17, 2025: DATALYTICS Security Inc. partners with ECAM Market, a GardaWorld Company. We’re thrilled to announce that DATALYTICS Security Inc. has been hand-picked by ECAM Market — a GardaWorld company — as their first official Sales Channel Partner in Canada, leading the launch of this new and groundbreaking ECAM Market national sales partner program. This partnership represents a powerful alignment between DATALYTICS Security Inc. deep technical integration expertise and ECAM Market's best-in-class, AI driven remote video monitoring, under the GardaWorld umbrella — combining innovation, scale, and execution at a national level. Through this collaboration, DATALYTICS Security Inc. will help drive expanded market coverage and accelerate revenue generation. This will enable ECAM Market and GardaWorld to deliver even more comprehensive and connected remote live video monitoring to clients anywhere across Canada, with no requirements other then a cellular network. DATALYTICS Security Inc. can now offer ECAM Market’s AI driven platform and analytics, which provides the most sophisticated and interactive live remote video monitoring to any IP camera system anywhere in Canada. DATALYTICS Security Inc. can also deploy completely self powered Mobile Surveillance Units (MSU) to any location, anywhere in Canada providing immediate live video monitoring by ECAM Market. As an organization built on trust, performance, and forward-thinking strategy, DATALYTICS Security Inc. is honoured to be chosen as the launch partner for this next evolution of ECAM Market’s channel sales growth. Together, we’re not just expanding the reach of live video monitoring and real time interactive video surveillance — we’re redefining how the Canadian market experiences AI intelligence, and data-driven analytics that power remote video monitoring and live surveillance technology. We look forward to an incredible journey ahead with ECAM Market and GardaWorld. #DatalyticsSecurity #ECAM #GardaWorld #StrategicPartnership #SecurityInnovation #ChannelLeadership #RemoteVideoMonitoring #NationalSecurity #CCTV #AI #VideoAnalytics #Canasa #PropertyManagagement

4

1 Comment

Effective strike security requires specialized recruitment and comprehensive training. Global Risk Solutions Inc. outlines key strategies for developing high-performing security teams capable of managing complex labor disputes and corporate security challenges. 🔗 https://lnkd.in/g5jpAY77 #LaborSecurity #CorporateSecurity #SecurityTraining

📣 NEW: Today, we're excited to launch CIRA MDR, designed to protect Canadian organizations 24/7 with managed detection and response fully managed by Canadian security experts.    In collaboration with cybersecurity leader Calian Group, CIRA MDR provides organizations with a sovereignty-first approach to cybersecurity.    Read the full announcement: https://lnkd.in/d-zYr2Vm

60

1 Comment

Great post! Also, did you know? Your “powered-off” phone may still be findable - here’s how: Google notes that on newer devices (like Pixel 8), a phone can still be located for several hours after it’s turned off or the battery “dies.” This isn’t magic or marketing. It’s engineering. What’s actually happening: • “Off” doesn’t mean electrically dead. Modern phones shut down the main processor, but low-power hardware remains active. • A protected battery reserve exists. A small, hardware-reserved energy budget powers security functions even when the OS is unavailable. • Bluetooth Low Energy does the work. No GPS, no cellular. The phone emits an encrypted BLE beacon that nearby devices anonymously relay. • This logic lives in hardware, not Android. It’s isolated from apps, malware, and even OS failure. • It lasts hours, not forever. Once the reserve is exhausted, everything truly goes dark. Why this matters: For users: This dramatically improves lost-device recovery and theft resistance. For engineers & security folks: “Powered off” is no longer equivalent to “RF silent.” That assumption needs updating. Bottom line: This is an embedded system inside your phone that outlives the phone itself. No physics broken. Just very efficient power management and a massive crowd-sourced relay network.

7

Great to share the stage today with Sharon Bauer from Bamboo Consulting at the Retail Council of Canada Secure Summit. Our discussion with retailers, government representatives, and law enforcement surfaced some valuable insights around Bill 25 in Quebec, the privacy commissioner and what it means for retailers deploying AI in Canada. The conversation focused on how organizations can responsibly apply AI while strengthening safety, security, asset protection, and operational insight across their operations. DM me if you like a copy the learnings and process that were discussed on today’s session. Tomorrow the RCC Secure Summit opens to the exhibit floor. If you are a Canadian retailer, or interested in the future of retail in Canada, come by the International Centre and see how leading retailers are applying AI in practical ways to address real challenges across the industry and drop by our booth. #RCCRetailSecure #RetailCouncilOfCanada #CanadianRetail #RetailSecurity #AssetProtection #AIinRetail #RetailTechnology #LossPrevention #PrivacyCompliance

31

2 Comments

AI and cloud-native transformation in public safety isn’t theoretical anymore - it’s operational. Proud to see Karima Holmes, MPA chairing this panel at BAPCO Annual Event. She’s spent her career sitting where decisions actually get made - inside emergency communications centers - and understands that adoption isn’t just about new tech. It’s about: • Reducing cognitive load • Improving responder outcomes • Protecting uptime and reliability • Bringing teams along in the change The agencies getting this right aren’t just “deploying AI.” They’re sequencing transformation thoughtfully and scaling responsibly. If you’re attending BAPCO, this is one to prioritize.

10

Cloud video surveillance has entered a new era — and the shift is transforming how organizations across Canada manage their security. In just the last 2–3 years, cloud video has become far more affordable, while offering major improvements in performance, resilience, and investigative speed. What once required heavy on-prem hardware and constant maintenance now runs seamlessly in the cloud with better uptime and lower overall cost. At FMC, we’re supporting organizations as they modernize their video infrastructure through cloud and hybrid-cloud architectures that provide: 🔹 Centralized access for multi-site operations 🔹 Automatic redundancy with no single point of failure 🔹 AI-driven search tools that reduce investigation time 🔹 Predictable monthly costs and no more server refresh cycles 🔹 Faster deployments with minimal IT involvement 🔹 Flexible retention options to match operational needs In our latest blog, we break down the technology shifts that made cloud video more affordable — and why many organizations are accelerating their move away from traditional NVR-based systems. 👉 Read the full blog: https://lnkd.in/givFr2KX

9

The May/June 2025 edition of SP&T News is now online! Check out a feature article on the importance of #RMR for the security market and our cover story on #GenAI and its influence on customer interactions and interfaces. Also: Athena Security Inc. expands Canadian presence, Canadian Security Association / Association canadienne de la sécurité (CANASA) launches new #NextGen committee, supporting your alarm customers in the summer months, and much more! Check it all out on the SP&T News website. https://lnkd.in/dP-uNsy

2