Being proactive about

cybersecurity

→ Governance

Protecting the information that our teams, partners and clients

entrust to us is a fundamental issue. Here too, we chose to trust

ISO expertise for the implementation of recognized cybersecurity

practices.

We have ISO 27001:2013 certification for our Information Secur-

ity Management System (ISMS), which covers the management

of information security controls and IT infrastructure support, to

protect the confidentiality, integrity and availability of our clients’

information at our five offices outside Quebec. We are one of the

first companies in North America in our sector to implement this

kind of program. By the end of 2023, we hope to have our eight

regional offices certified.

We are also part of a group that includes all the major Canadian

players in our industry sharing the best information security prac-

tices. To strengthen our practices, we introduced a secure access

device for our employees. Training on the best practices in infor-

mation protection, notably to counter phishing, was provided to

over 2,500 employees in 2022. Lastly, in accordance with the

first requirements of Quebec’s Law 25, we appointed a person in

charge of the protection of personal information.

Our perspective

|

Health and safety

|

Culture of innovation | Climate change

|

Circular economy

|

Community relations

|

Indigenous relations

|

Diversity, equity and inclusion

|

Governance