Being proactive about
cybersecurity
→ Governance
Protecting the information that our teams, partners and clients
entrust to us is a fundamental issue. Here too, we chose to trust
ISO expertise for the implementation of recognized cybersecurity
practices.
We have ISO 27001:2013 certification for our Information Secur-
ity Management System (ISMS), which covers the management
of information security controls and IT infrastructure support, to
protect the confidentiality, integrity and availability of our clients’
information at our five offices outside Quebec. We are one of the
first companies in North America in our sector to implement this
kind of program. By the end of 2023, we hope to have our eight
regional offices certified.
We are also part of a group that includes all the major Canadian
players in our industry sharing the best information security prac-
tices. To strengthen our practices, we introduced a secure access
device for our employees. Training on the best practices in infor-
mation protection, notably to counter phishing, was provided to
over 2,500 employees in 2022. Lastly, in accordance with the
first requirements of Quebec’s Law 25, we appointed a person in
charge of the protection of personal information.
Our perspective
|
Health and safety
|
Culture of innovation | Climate change
|
Circular economy
|
Community relations
|
Indigenous relations
|
Diversity, equity and inclusion
|
Governance