Kiteworks Support for Canadian Cyber Security Certification

This guide details how Kiteworks aligns with the Canadian Program for Cyber Security Certification (CPCSC), specifically focusing on ITSP.10.171 compliance for defence suppliers. The CPCSC establishes a mandatory framework for cyber security within Canada's defence supply chain, requiring suppliers to achieve certification levels that determine their eligibility for government contracts. The guide outlines the progressive certification levels, starting with a self-assessment against foundational controls, followed by third-party assessments, and culminating in comprehensive evaluations. Kiteworks is positioned as a solution that supports compliance with 80% of Level 2 controls, facilitating secure data exchange while addressing unique Canadian regulatory concerns. The document includes a control-by-control mapping of Kiteworks capabilities to the ITSP.10.171 requirements, enabling defence suppliers to identify control inheritance and prioritize their compliance efforts. Additionally, it discusses the significance of data sovereignty and the operational advantages of using Kiteworks for Canadian suppliers aiming for both CPCSC and CMMC certifications.