Canadian securities administrators publish summary of the roundtable on response to cyber security incidents

CSA Securities

Montréal – The Canadian Securities Administrators (CSA) today published CSA Staff Notice 11-336 Summary of CSA Roundtable on Response to Cyber Security Incidents, which provides an overview of the themes discussed and some of the key takeaways.

The CSA hosted a roundtable on February 27, 2017 to explore cyber security issues and opportunities for greater collaboration, communication and coordination in the event of a large-scale cyber security incident. Roundtable participants represented a cross-section of Canadian securities market stakeholders – including marketplaces, clearing agencies, registrants, reporting issuers, regulatory authorities, and cyber security experts – reflecting diverse roles and views.

"Our discussions highlighted the interconnected nature of the Canadian securities markets ecosystem," said Louis Morisset, CSA Chair and President and CEO of the Autorité des marchés financiers. "There was a clear agreement on the importance of cooperation and information sharing in responding to a cyber security incident and reducing the risk of contagion."

In the view of roundtable participants, cyber security incidents can potentially have far-reaching implications beyond the immediate organizations that are affected, especially if core systems are impacted.

Participants focused on the importance of robust Incident Response Plans (IRPs) for entities, including entities that may be indirectly affected by a cyber incident. Participants indicated that IRPs are generally quite detailed and complete in relation to internal procedures in the event of an incident, but should also address coordination and information sharing with other stakeholders, particularly in the context of a market-wide incident.

Cyber security was identified as a priority area in the CSA 2016-2019 Business Plan. CSA members will continue to collaborate with market participants, other regulators and stakeholders to enhance cyber security preparedness and will work towards a more formal coordination process beyond the existing processes that are in place.

The notice can be found on CSA members' websites.

The CSA, the council of securities regulators of Canada's provinces and territories, coordinate and harmonize regulation for the Canadian capital markets.

- 30 -


For more information:

Sylvain Théberge
Autorité des marchés financiers

Nicole Tuncay
Alberta Securities Commission

Alison Walker
British Columbia Securities Commission

Kristen Rose
Ontario Securities Commission

Jason (Jay) Booth
Manitoba Securities Commission

Andrew Nicholson
Financial and Consumer Services Commission
New Brunswick

David C. Harrison
Nova Scotia Securities Commission
902 424-8586

Janice Callbeck
Office of the Superintendent of Securities

John O'Brien
Office of the Superintendent of Securities
Newfoundland and Labrador

Rhonda Horte
Office of the Yukon Superintendent of Securities

Jeff Mason
Nunavut Securities Office

Tom Hall
Office of the Superintendent of Securities
Northwest Territories

Shannon McMillan
Financial and Consumer Affairs
Authority of Saskatchewan


Additional news