Ontario names former intelligence officer to be its first security advisor

As a sign it is taking cyber security more seriously Ontario has hired a former Canadian Security Intelligence Service (CSIS) assistant director of intelligence to be its first provincial security advisor.

Ray Boisvert
Ray Boisvert

Ray Boisvert, who has headed a security consulting company iSECIS for four years since leaving CSIS, was named to the post — which will make him an associate deputy minister in the Ministry of Community Safety and Correctional Services — by the government this morning. He begins his duties Jan.2

In his role he will provide advice and intelligence on areas of public safety and national security that fall within provincial responsibility, the government said in a statement. “He will support efforts to protect provincial assets from events that could affect services, networks and facilities that are critical to Ontario’s economy, public safety and security.” He will also engage with key partners on security-related matters.

Boisvert will report to the deputy minister of Community Safety and Correctional Services.

As a former intelligence operative Boisvert has been a popular interview for news media who doesn’t pull his punches.

At a conference last year on the state of Canada’s critical infrastructure he warned that governments, utilities and financial institutions aren’t doing enough to defend critical infrastructure for online attacks. However, he did add that  Ontario, New Brunswick and Alberta are ahead of the other provinces and territories.

In 2014 he told the annual SecTor security conference that “Western hegemony is under threat” from the wide range of nation-states, terrorists and criminals hacking their way into the public and private sectors — although he also said it isn’t hopeless.

“Stop trying to keep the bad guys on the outside at the perimeter,” he advised. “You’re just going to have to accept that a lot of them will get by all those defences.” Instead organizations should use behavioral analytics to analyze behavior on the internal network to detect suspicious activity.

“It’s easy for the non-tech people to tell CIO buy an appliance to make the network safe,” he said. But “proactive cyber defence is a combination of a lot of things. It’s about layers, keep on building and refurbishing, and its about going on the dark Web and finding out what others are saying about you.”

His appointment comes after the province was embarrassed in October by a distributed denial of service (DDoS) attack that caused the cancellation of an online literacy test for tens of thousands of Ontario students.

It also comes after a hacker claimed in November to have stolen customer, employee and vendor information from an aboriginal-owned and run casino resort.  The provincial lottery and gaming corporation regulates casinos. The resort said none of the casino games were breached.

In addition a small Ontario hospital admitted in March its website could have been dispensing links to malware and ransomware due to an unpatched content management system.

Meanwhile the federal government is preparing to draft new cyber security policies and framework which could impact provinces. For example, Public Safety Canada is talking about creating a national cyber crime centre to co-ordinate online investigations which would include provincial and territorial participation, and about possibly helping the public and private sectors share threat intelligence. A separate public consultation, which ends Thursday, is asking — among other things — if local police forces should be given more power to get basic subscriber information from Internet service providers.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now