Bill C-8 introduces the Critical Cyber Systems Protection Act (CCSPA), mandating designated operators in key sectors to implement comprehensive cybersecurity programs, report incidents within 72 hours, and comply with government directives to bolster cybersecurity resilience. Organizations must assess risks, maintain records, and face penalties for non-compliance, with enforcement by existing regulators.
Edward Kiledjian
@ekiledjian