CPCSC readiness for Montreal founders and operators. CPCSC is Canada’s defence supply-chain cyber certification program, built on ITSP.10.171, the Canadian profile of NIST SP 800-171. If you want to bid on or stay on federal defence contracts, certification is becoming table stakes. We get you from “we have no idea where we stand” to a Level 1 self-assessment you can attest to, and lay the groundwork for the third-party-assessed higher levels.
Montreal is Canada’s second-largest tech hub, with deep AI research (MILA, Element AI alumni, Cohere’s research roots) and a robust gaming and creative-tech sector. It’s also the only major Canadian market under Quebec Law 25, which carries fines up to $25M CAD or 4% of global revenue.
We deliver bilingually where required, and we know Law 25 inside and out: data portability windows, Section 12.1 automated-decision disclosure, breach-notification expectations from the CAI. Toronto firms that handwave Quebec compliance are why this gap exists.
CPCSC is Canada’s defence supply-chain cyber certification program, built on ITSP.10.171, the Canadian profile of NIST SP 800-171. If you want to bid on or stay on federal defence contracts, certification is becoming table stakes. We get you from “we have no idea where we stand” to a Level 1 self-assessment you can attest to, and lay the groundwork for the third-party-assessed higher levels.
For the full service detail, see the CPCSC Readiness page. For fixed-price productized engagements, see pricing.
Book a free 30-minute discovery call. We’ll tell you whether this engagement fits, what it would cost, and when we could start.
Book a call