As cyber threats to Canada escalate in sophistication and intensity, awareness and best practices in cybersecurity are critical to mitigating their impact. A recent audit report from the Office of the Auditor General of British Columbia (BC) concluded that the British Columbia Institute of Technology (BCIT) has a comprehensive governance framework in place to support oversight and management of cybersecurity risks. This includes the implementation of established policies, defined roles and responsibilities, risk-informed processes, and performance metrics.
For an institute serving about 45,000 students and nearly 4,400 employees, safeguarding personal information, research data, and critical infrastructure systems is a priority.
"Cybersecurity is rooted in the BCIT Strategic Plan - guiding our governance, operations, and culture," said Dr. Jeff Zabudsky, BCIT President. "The findings from the Office of the Auditor General of BC affirm the deliberate and sustained work BCIT has undertaken to protect our community while modernizing the way we learn and work."
A strategic commitment to cybersecurity
According to the Office of the Auditor General of BC, cyber attacks can lead to privacy violations, reputational damage, and financial loss. In Canada, total losses from fraud rose to $567 million in 2023, while the average ransomware payment reached $1.13 million.
A cybersecurity governance framework is a structured set of policies, processes, and standards that guide how an organization manages risk and compliance. It also serves as the foundation for effective cybersecurity risk management.
"Cybersecurity is about trust. Trust between the organization and its people," explained Sunny Jassal, BCIT Chief Information Security Officer and Technology Management alumnus. "Earning that trust encompasses transparency, resilience, and a strong security culture."
BCIT is one of the only post-secondary institutes in BC with cybersecurity efforts embedded in its Strategic Plan. The audit found the Institute's cybersecurity practices aligned with its organizational goals, and there were no recommendations for improvement.
Leading in cybersecurity education
Alongside its leadership in cybersecurity governance, BCIT plays a critical role in training BC's cybersecurity workforce. BCIT offers one of the largest selections of cybersecurity training in Western Canada - equipping graduates for job-readiness to defend against increasingly complex cyber threats. Through applied research and practical training, students and industry are prepared for evolving cyber threats in Canada.
The full audit report is available from the Office of the Auditor General of British Columbia.
Quick facts
- One of Western Canada's largest cybersecurity trainers: BCIT offers flexible full- and part-time cybersecurity training across fields such as Applied Computer Science, Digital Forensics, Industrial Network Security, and more.
- Be Cyber Aware: Resources from BCIT to help build cybersecurity awareness and skills.
- The BCIT Cybersecurity Office is independent of the IT Services department to best support management and oversight of cybersecurity risks.
- BCIT Critical Infrastructure Cybersecurity Lab: Offering virtual training to help industry detect and defend against cybersecurity attacks on critical infrastructure.
- Cybersecurity training for Canadian veterans: A version of the Industrial Networking for Cybersecurity Professionals microcredential is designed to support Canadian Armed Forces veterans for entry into cybersecurity careers.
For more information
3700 Willingdon Avenue
Burnaby British Columbia
Canada V5G 3H2
www.bcit.ca/
