For Canadian Defence Manufacturers and Suppliers

Pass the audit. Survive the attack.

We build cybersecurity programs for Canadian defence manufacturers — designed to pass the audit, built to hold up under attack.

Book Your Gap Assessment
The Compliance Window
CPCSC* Level 1
Hits select DND contracts — this summer.
CPCSC* Level 2
Third-party audit against 98 controls.
CMMC**  2.0
Binding U.S. law — November 2025.
* Canadian Program for Cyber Security Certification
** Cybersecurity Maturity Model Certification

Know where you stand before the audit does.

Book a 30-minute gap assessment with a senior consultant to identify your highest-risk exposures and what defence-ready security actually looks like for your environment.

Book Your Gap Assessment

Industries we Work With

Aerospace & Aviation Systems
Transport Canada & DND Compliance
Dual-Use & Advanced Manufacturing
Commercial shops entering military contracts
Naval & Land Systems
NSPS & LAND Programs Supply Chain

Where defence-ready programs break down.

01 Critical

Controlled data in the wrong places

If sensitive defence data is mixed into everyday business systems, a single compromised account or exposed device can quickly become a serious security and compliance issue.

02 High

Legacy systems with unclear risk

Legacy infrastructure, unmanaged devices, and poorly understood networks create operational blind spots. We help identify the gaps and develop a practical plan to address them.

03 High

Third-party risk you still own

Your suppliers, subcontractors, and service providers can introduce risk that ultimately falls back on your organization. Defence readiness requires understanding where those dependencies may be vulnerable.

04 Elevated

Not ready when the buyer asks

Policies, evidence, controls, and remediation plans matter long before a contract is awarded. We help ensure cyber readiness does not become the reason your bid is delayed or unsuccessful.

Learn More

Cyber Security Frameworks & Compliance Assessments

Cyber Ready Plan — Defence
Gap assessment mapped to CPCSC, CMMC 2.0, and NIST SP 800-171. A prioritized roadmap built for third-party audit and bid submission.
Controlled Environment Pen Testing
Scoped adversarial testing across IT and production OT floor interfaces.
Supply Chain Vendor Risk
Managing Tier 2/3 supplier compliance against framework flow-down requirements.
Fractional CISO via CISO.D
Senior security leadership without full-time headcount, specialized in CGP protocols and federal reporting.
How we work

A short list of things we don't compromise on.

Enterprise-Grade Cyber Experience

We bring experience from financial services, security engineering, offensive testing, governance, and crisis management—building compliant programs that perform under pressure.

Audit-ready isn't attack-ready

A shop that passes CPCSC with a flat network isn't defence-ready. We build compliance and security together so your controls hold up in both audits and real-world conditions.

Senior-only delivery

The consultant on your first call is the one doing the work. No hand-offs, no account managers. The same expert stays engaged throughout the entire process.

Book Your Gap Assessment
Book your gap assessment

A clear picture of your defence-ready risk.

30 minutes with a senior consultant. You leave with three things you didn't know going in.

01

Your three highest-impact exposure points

Based on your environment, your customers, and the controls you have today.

02

What defence-ready looks like for you

Prioritised actions that reduce real-world risk — not a generic checklist.

03

Whether we're the right team

If we're not, we'll tell you who is. Your time matters more than our pipeline.

Book Gap Assessment

Work With Us.

  •  

Robert D. Stewart

Founder & Head, Strategic Threat Intelligence

Robert is a technology incident and crisis management specialist with over 3200 hours leading critical recoveries and investigations within regulated industries.

Robert has built cyber incident and global crisis processes for the Fusion Centres of two major North American banks. With an extensive focus on operational resiliency, Robert worked as a Global Crisis Management Specialist, leading the technical migration for the pandemic for a multi-national financial institution.

Robert is a threat intelligence specialist focused on preventing large scale incidents and attacks before they happen, with unparalleled experience in incident response: 650 critical incidents within the global financial sector leading to the recovery of over 250 unique global financial systems, with 6000 executive communications and briefings issued, and over 200 post-incident reviews.