C3RM is dedicated to improving cyber risk awareness and developing better cyber risk management technologies, programs and practices.

US/Canada edition of the International Cyber Risk Management Conference (ICRMC)  

Date: April 15-16, 2019

Location: Metro Toronto Convention Centre, Toronto, Canada

Click here to register and for more information.

C3RM Annual General Meeting - Let's Talk Security!

When: Jan. 24, 2018, 4:00-5:30 PM 
Where: ABE ERB
The Tannery, 151 Charles St W, Kitchener, ON
Appetizers and your first drink are on us! 
You'll have the opportunity to:

- Learn where C3RM is going and our plan to get there.
- Meet other C3RM Members and the Board.
- Contribute to Canada's leadership in cyber security and risk. 

Click here to RSVP.

C3RM Cyber Symposium


Protecting people and information so everyone is safe.

Join us on October 18 to talk about building strong, secure organizations that are passionate about people.

Best for: People leading teams and building culture


When: Wednesday, October 18, 2017

Time: 8:00 a.m. - 12:00 p.m.

Where: Accelerator Centre, 295 Hagey Blvd, Waterloo, ON N2L 6R5

Join the Canadian Centre for Cyber Risk Management and a slate of leading experts as we delve into the current state of cyber risk, and explore building resilient businesses through leadership, culture, and a commitment to customer success.

Click here to register

In-Depth Workshop on Cyber Security

C3RM has partnered with the Greater Kitchener-Waterloo Chamber of Commerce, and the Canadian Chamber of Commerce to offer a free high-value session on cyber security for businesses of all sizes and sectors across Waterloo Region.

Experts from the International Cyber Security Protection Alliance (ICSPA) and other organizations will provide detailed health checks on areas including security, technology, privacy and more.

Date: June 6, 2017
Time: 12:00 p.m. – 2:15 pm
Location: The Walper Hotel, 20 Queen Street South, Kitchener
Cost: FREE

To register email with your name and organization.  

International Cyber Risk Management Conference

Cyber Security: Closing the Gaps

Date: March 2-3, 2017

Place: Toronto

Take a closer look at current gaps that exist in cyber security knowledge, governance, detection, insurance and response, at the 2017 International Cyber Risk Management Conference (ICRMC). The third annual event will see the addition of moderator Adam Segal, Director of Cyberspace and Digital Policy Program at Council on Foreign Relations, and will welcome keynote speaker Tom Ridge, the first U.S. Secretary of Homeland Security and founder of Ridge Global.

Please go to to register and obtain more information. C3RM members receive a 30% discount.

Industrial Control Systems (ICS) - Technical Training and Workshop

Date: October 4-6, 2016

Place: Calgary, Alberta

Public Safety Canada is pleased to announce the return of our national series of workshops focused on control systems security.  The next event of this series will be held in Calgary, Alberta.  The Industrial Control Systems (ICS) Technical Training Session will be held on October 4, followed by the ICS Workshop on October 5 and 6, 2016.

The one-day Technical Training Session will focus on the hands-on development of basic incident handler skills for ICS security professionals, whereas the Workshop is a two day training and community building opportunity aimed at assisting Canada's critical infrastructure owners and operators to better secure their most critical Industrial Control Systems (ICS) and information technology assets.  Registration will start on August 8, 2016.

Please note:  There is no registration fee to attend the Technical Training and Workshop. Any expenses, including meals, transportation, accommodations, etc. are the responsibility of the participant.

PRMIA Canadian Risk Forum

Date: September 20 - 21, 2016
Place: The Omni King Edward Hotel, 37 King St E, Toronto, Ontario

PRMIA Toronto is proud to host the 4th Annual Canadian Risk Forum, a two day gathering on The Known Unknowns—What's the Next Risk Frontier?

Doug Blakey, Director of C3RM will be presenting on September 21 from 2:45-4:00 on Cyber Risk Management—A Lifecycle Approach.

Click here for more information on the event and to register.

Canadian Advanced Technology Allicance Presents: Ottawa Police Cyberattack Debrief - Live Interview with Daniel Steeves, CIO, Ottawa Police Service (Password Access Only)

Video Viewing URL:

Password: Please request from and include your company name.

Daniel Steeves, Chief Information Officer for the Ottawa Police Service (OPS) describes in a 15 minute video briefing the 2014 Distributed Denial of Service (DDoS) attack and social engineering tactics taken in attempting to compromise the OPS networks, while further explaining the OPS response and the "three primary lessons" learned.

Mr. Steeves also reflects on what tools, policies, and conversations are required to assist police in addressing cybercrime and which he recommends be addressed at the upcoming National Policing Cybercrime Summit (NCPS).

Key Quotes:

I think the real piece of the conversation has to be at a national level. I think it has to be with our federal counterparts and it has to be with our other police services across Canada so that we address the bad behaviour nationally so that if you know that attacks are coming from certain places consistently, all the time, maybe we need to look at mechanisms whereby we close those types of attacks right at our borders so that we don't even let it inside the Country to begin with.

From a strategy perspective, (the Summit should be) looking at what types of solutions that we should be putting together as a police service, not just for policing, but for protection for the community. So do we need to have an enhanced capability for example for investigation toolsets that may not exist today? So when someone from your community comes in a reports a cybercrime to your police service how do you investigate that cybercrime and how do you deal with it and bring to a final conclusion.

About Daniel Steeves

Daniel Steeves is an accomplished Senior Executive with 25 years experience leading strategic organizational change by leveraging technology to achieve critical business outcomes. His professional experience spans diverse technical and business settings across both public and private sectors in highly regulated industries such as National Defense, Insurance, Health Care and Public Safety. He has worked with companies such as Siemens, IBM, Microsoft, and SAP in delivering key technologies to address enterprise-level complex business challenges.

Also view recently launched, a complete compilation of over 40 public-safety related videos with more being added each week.

C3RM Free Event: Cyber Liability: Not IF but WHEN

The Canadian Centre for Cyber Risk Management (C3RM) is hosting the free event titled “Cyber Liability: Not IF but WHEN”.

Highly sophisticated malware and targeted attacks represent an increasing threat to organizations of any size. Join C3RM and Miller Thompson LLP for an informative presentation on how organizations can determine and adopt the appropriate standards and methods to secure their computer operations and mitigate cyber risks. The speaker, Daniel Strigberger from Miller Thompson will discuss the cyber risk implications from a legal perspective, with an emphasis on protecting privacy and intellectual property.

Date: Wednesday, 25 February 2015 from 4:00 PM to 5:00 PM (EST)

Location: 375 Hagey Boulevard, Suite 302, Waterloo, Ontario

The Internet of Things (IoT). Find out what it is, how it is changing our lives, and hear about security & privacy issues every Canadian needs to know.

Date: Tuesday, 27 January 2015 from 3:45 PM to 5:00 PM (EST)

Location: Canada's Technology Triangle (CTT), 260 King St W, Kitchener, ON N2G 1B6

If you use computers at work or at home then this presentation will be of interest to you. The Canadian Centre for Cyber Risk Management (C3RM) is pleased to offer the following free seminar in our continuing speaker-series of informative and provocative talks aimed at increasing the cyber risk awareness of Canadians.

"The Internet of Things (IoT) refers to the ever-growing network of physical objects that feature an IP address for internet connectivity, and the communication that occurs between these objects and other Internet-enabled devices and systems." Webopedia

This non-technical presentation and discussion, led by Ahmed Etman of Cisco Systems, Canada, will describe the IoT, give examples, and discuss security & privacy issues we all now face.

CATA Cyber Security Forum

CATA invites you to meet Cyber Security thought leaders at the CATA Cyber Security Forum

Date: November 12-13, 2014

Location: Ottawa

Details provided at this URL:

The Canadian Advanced Technology Alliance (CATA Alliance), in response to the calls for action from its membership and direction of its Public Safety Advisory Board, is hosting a two-day forum in Ottawa, November 12 & 13, 2014, to discuss the trends and impacts of online terrorism and what organizations are doing to address these threats both now and in the future. This forum, open to all both members and non-members, will also develop a roadmap for next steps including the formation of a standing council to help both private and public sector organizations keep pace with innovations and intelligence.

CATA Alliance is starting the Forum's conversations early with the video interview with Gaetan Houle, National IT Security Leader:

The Home Depot Cyber Breach: What happened, how it is affecting Canadians, and cyber risk ramifications for Canadian Business

Date: Tuesday, 28 October 2014 from 3:30 PM to 5:00 PM (EDT)

Presenter: Doug Blakey, Director, Canadian Centre for Cyber Risk Management (C3RM)

Location: Communitech, Kitchener, ON

Presentation & Discussion

More and more large, seemingly well protected organizations are experiencing significant cyber security incidents. Join the folks from C3RM for a presentation and open discussion about the incident, how it is affecting Canadians, and ramifications this breach has for even the smallest Canadian organizations. And we look forward to hearing what you have to say about this topic too!

Join CATAAlliance's Vice-President Research, Katherine Thompson, as she interviews J. Paul Haynes, CEO of eSentire Inc.

Tune in Thursday, October 9 @ 11:00 a.m. EST

TechNOW with special guest, J. Paul Haynes, CEO of eSentire Inc.

As a leading innovator in the cyber security industry, eSentire protects 150 asset management funds with over $1.5 trillion in assets. J Paul will provide insights and issues senior leadership should be considering when he participates in the upcoming CATAAlliance Cyber Security and Cyber Terrorism Forum.

++ Action Items:

1. To watch this TechNOW episode's live broadcast visit:

2. To register for the Cyber Security Forum:

Do you have a question you would like posed during the interview? Please email your question to at least 24 hours in advance. The most frequently asked question(s) will be answered as time allows.

Brief Bio

Mr. Haynes is a serial entrepreneur, who started his first company when he was completing his Masters. He joined eSentire in 2010 to bring his business growth, sales and marketing expertise to the organization. Under his leadership the firm has grown fourfold and now is the primary security organization for a combined $1.4 trillion in AuM in the financial services market. eSentire is rapidly expanding into legal, technology firms, healthcare and extractive industries. Mr. Haynes often speaks to executives and is able to bridge complex technical issues to the enterprise security risks that their technical teams must mitigate. In the 20 years prior to eSentire, he started, financed and successfully sold a number of enterprise software businesses in sectors including energy, government, healthcare and engineering. Mr. Haynes is a professional engineer; heholds a Masters in Engineering and sits on several Boards of Directors.

#StartupChats – Small Business & Online Security

Date: October 8, 2014

About this event

October is cyber security month and we are partnering with the Canadian Internet Registration Authority to help you to protect and secure your startup online. Join Startup Canada, CIRA and a panel of experts to share your experiences and gain top advice on how to ensure that your startup is ‘Cyber Secure’. Login to Twitter on October 8th from 12-1pm EDT to join the conversation using #StartupChats. 


Sheila Bergeron, Marketing Manager – Canadian Internet Registration Authority (CIRA) – @dotCAVoice

Kevin Jiang, Content Marketing & Social Media Specialist Trulioo – @Trulioo