Cyber Defense Division

Terranova Defense Solutions Incorporated (TDS) Cyber Defense Hub (CDH) was designed to service all companies, businesses, services, government and others within North America's boundaries, offering a variety of business services with global corporations, organizations, SMEs, and individuals alike.

As technology advances and new concepts and capabilities emerge worldwide, North America must lead strategic integration of innovative and effective cybersecurity and defensive solutions. Our national infrastructure and defense's future and safety will either be characterized by crippling vulnerabilities or growth and success. The TDS Cyber Defense Hub has been planned to meet the threat head-on with a state-of-the-art smart facilities, with access to meeting spaces to classrooms to innovation and research labs to our new post-quantum resilient encryption and blockchain centers, allowing for in-person and online classified meetings and research at the Top Secret/NATO Secret levels, all in one location.

An evolving threatscape barrages organizations with increasingly sophisticated and targeted attacks. Today, a multi-faceted strategy is necessary to defend against breaches on all fronts of your IT and digital environments. At TDS we have developed a team of subject and program-matter experts, cybersecurity specialists, CISO's and other cyber defense experts along with their expertise, tools, and resources into a comprehensive solution that is unparallel to any other cyber organization today.

The TDS Cyber Defense Hub is the largest cyber defense hub in the world today. It has been designed as an agnostic “Cyber Domain Ecosystem.” A place where subject matter experts can come together with their processes and capabilities to customize solutions and accelerate the implementation of advanced Cyber-Technologies through experimentation, innovation, research, and application.

Education and Training | Experimental Education

Here you will have access to various resources, equipment, and space for all of your Cyber education and training needs.

=> Cyber Academy
=> Cyber Testing
=> Cyber Internship
=> Research and Innovation

Concepts are generated and tested in labs through cutting-edge technology like VR, wargaming, AI, and Quantum Computing.

We put cutting-edge technology to work — taking a proactive stance to thwart attacks on your company or organization. Using next-generation tools, we will make it possible to monitor closely, target precisely and eliminate threats quickly, using a triple threat detection and protection system built in Canada, that will create a fully secure defense system that is currently available today.

=> Cyber Innovation & Integration Lab
=> Quantum Computing Lab
=> Multi-Domain Wargaming Lab
=> Emerging Technologies Lab
=> Artificial Intelligence (AI) & Machine Learning (ML)

Use smart algorithms to identify patterns, interpret data and continuously improve operational efficiency.

=> Cloud (public, hybrid, tactical) Customize the cloud to your exact needs without sacrificing safety with comprehensive cloud guidance and implementation.
=> Modeling & Simulation Lab
=> Software and Hardware Lab
=> Augmented Reality & Virtual Reality (VR) Immersive experiences allow a user to learn from pre-programmed scenarios, interact with modules, and more.
=> War-Gaming Lab Test strategies, run scenarios, and accurately calculate impacts to improve your tactical abilities and success.
=> Cybersecurity

From point solutions to organization-wide coverage, we offer network, endpoint, data, and user protection.

The TDS Cyber Defense Hub will serve at the global cornerstone for our cyber domain ecosystem. Specifically designed to allow businesses, government and non-profits and for-profits to connect with and to our community, our Cyber Defense Hub will provide the most innovative facility in the Greater Toronto Area (GTA), where cybersecurity threats against our Country won’t stand a chance.

Cyber Defense Hub

For Governments, Countries and Major Corporations:

The global environment is ever changing and presents both challenges and opportunities. One of, if not the, most important drivers of these changes revolve around technology. Our planet has never seen this rate of change, due to technology, in its history; the pace of which is only expected to increase in the future. With a more globalized and complex economic ecosystem, one of the main challenges all countries face are the threats from cyber criminals and fellow nation-states who seek to dominate through intimidation and coercion. It is projected that cybercrime will exceed $8 Trillion (USD) globally in lost revenue in 2023 alone. Cybercrime impacts every aspect of a nation’s economy, their national defense, government and their citizens and workers.

Unsurprisingly, cybersecurity and supply chain security are common threads throughout the participating countries ‘National Cybersecurity Strategy’ vision. While specifically addressed in most of the objectives and goals set out in the vision, cybersecurity and supply chain security will have significant impacts in all five of the high-level specific objectives:

o Development of the National Cybersecurity System
o Increasing the level of resilience of information systems of the public administration and private sector, and achieving the capacity to effectively prevent and         respond to incidents
o Increasing the national capacity in the area of cybersecurity technology
o Building public awareness and competences in the area of cybersecurity
o Building strong international position of the participating county in the area of cybersecurity

As Well as Directly Impacting all Eighteen Subordinate Objectives:

o Implementation and evaluation of the functioning of the provisions regarding the national cybersecurity system
o Enhancing the efficiency of the functioning of the national cybersecurity system
o Development of an information sharing system for the purpose national security management
o Enhancing cybersecurity of essential and digital services and critical infrastructure
o Development and implementation of a risk assessment methodology at the national level
o Increasing capacity to counteract cybercrime, including cyberespionage and incidents of a terrorist nature
o Development and implementation of National Cybersecurity Standards and disseminate of good practices and recommendations
o Supply chain security
o Security tests and audits
o Development of industrial and technological resources for the purposes of cybersecurity
o Focus on developing of public-private cooperation
o Stimulating research and development in the area of cybersecurity
o Gaining the capacity to perform a full spectrum of military operations in cyberspace
o Increasing competence of the staff of entities relevant to ensuring cybersecurity of the participating country
o Creating conditions for the safe use of cyberspace by citizens
o Developing public awareness towards the safe use of cyberspace
o Active international cooperation at the strategic and political level
o Active international cooperation at the operational and technical level

Supporting the goals and objectives of the ‘National Cybersecurity Strategy’ will both directly and indirectly strengthen the entire spectrum of activities outside the United States.

The Five Specific Objectives

The five major pillars of the ‘National Cybersecurity Strategy’ represent high level areas for focus by governments outside the United States. We are confident in our proposal, we can demonstrate evidence of our findings, and the effectiveness of these solutions for building a more secure supply chain. For example, better protected assets in the cybersecurity arena represents a significant lever to assist the government of the participating country to achieve their goals and objectives as stated in ‘National Cybersecurity Strategy.’

Development of the National Cybersecurity System

Global government visions for cybersecurity, a mature national cybersecurity system is the foundation for many of the goals and objectives for their countries future. Global citizen’s wealth and prosperity and their economic development are all impacted significantly by a safe and secure national cybersecurity system. A linchpin to this national cybersecurity system is a safe and secure supply chain. Safe and secure supply chains support this specific objective in a number of ways:

1) Increasing the capability of existing supply chains within the participating country to defend their internal business networks will significantly increase the ability of the National Cybersecurity System to met all of the government’s objectives since cost and risk sharing are a natural outcome of a secure supply chain. Businesses will add their talent, resources and innovation to the national cybersecurity conversation. A true partnership will be developed that raises the overall capability of the country, not just in one siloed area.

2) With a true partnership in cybersecurity, information sharing becomes much easier across the entire spectrum of the global economy as businesses have a vested interest in protecting not only their internal networks but also the national economic sector and thereby the national security the serviced country.

3) Bringing in all aspects of the global economy in a secure supply chain program will greatly aid in the protection of critical infrastructure. Rather than focusing on just those entities who are enabling Polish critical infrastructure, all businesses, even if only tangential, will be supporting the resilience of the participating critical infrastructure.

4) Integrating a secure supply chain into the National Cybersecurity System allows for a much more detailed approach to risk management. Knowing that businesses throughout the participating country have met a specific cyber standard allows for better risk management decisions and quicker and more agile reactions to changes in threat tactics as all entities can be directed to make a change to those tactics collectively.

5) With a more secure supply chain, cyber criminals and national threat actors will find less attack surface to exploit across the spectrum of activities. This lack of criminal activities will enable greater innovation and investment as funds and resources previously dedicated to reacting to criminal activity are now freed to be used on more productive areas.

Increasing the level of resilience of information systems of the public administration and private sector, and achieving the capacity to effectively prevent and respond to incidents

We previously discussed how a secure supply chain would enable all aspects of the Polish economy, individual productivity and prosperity and national security. But there are even more significant impacts to the resilience of both private and public networks through the implementation of a National Supply Chain Security Program:

1) Setting a national standard for all company to comply with allows the government of the participating countries to easily make modifications and adjustments to the program due to both technological innovations and developments as well as changes in threat actor tactics. One program manager, at the governmental level, enables the ease of dissemination of good practices and recommendations.

2) Obviously, a secure national supply chain program will significantly increase the ability of each participating business community to become more resilient and contribute to all aspects of their strategic plans including national security.

3) With a specific cybersecurity standard all businesses must comply with, only through independent, third-party auditing can true compliance with the standard be guaranteed.

Increasing the National Capacity in the Area of Cybersecurity Technology

In addition to the participating countries desires for cybersecurity across the spectrum of Polish businesses, the movement from a reactive cybersecurity program to a more proactive version allows for many impacts this this specific objective.

1) Resilient networks throughout both the public and private sectors reduce the time and cost of responding to cyber criminals and hostile nation-state actors. There is significant savings to be realized here even with an increase in spending on national cybersecurity overall. These savings in both money and time invested in reaction to cyber threats means there are more resource available for investment in more productive areas. New technological innovation and investments in research and development will be natural outcomes.

2) Directed supply chain security compliance will by it’s very nature foster closer and better cooperation between not only the private and public sectors but also within the private sector where individual businesses will look to share costs and risks across the entire economy. Better cooperation within the private sector will eventually lead to a lessening of resource allocation on behalf of the participating government as the requirement to provide incentives and other monetary grants to businesses lessens over time.

3) The closer cooperation fostered by a national supply chain security program will directly lead to significant capability increases in national defense in cyberspace. As more businesses increase their resilience to cyberattacks, the more likely we will see easier and smoother transfers of not only knowledge but also personnel. Government trained personnel will move to the private sector and visa versa. This transfer of the latest and greatest cybersecurity tactics in the private sector will enhance the ability of government to withstand a cyber assault.

Building Public Awareness and Competences in the Area of Cybersecurity

As the participating country seeks to raise public awareness and overall competencies within cybersecurity, a secure supply chain program will make great strides in this area. With all companies required to meet a cybersecurity standard, each business reaction will increase resources dedicated to cyber resilience as well as increasing the demand for cyber talent throughout the Polish economy.

1) As each business in the participating country is required to meet the cybersecurity standard of the secure supply chain program, the demand for cyber talented individuals and more technical staff will naturally increase. Additionally, the population of cybersecurity evaluators who will ensure each business is in compliance with the standard sets the participating country up as a provider of global cyber talent.

2) With every business seeking cyber compliance, all employees will transition to sensors of cyber threats. The overall understanding of good and poor cyber hygiene practices will greatly increase. And these skills will not remain in the workplace. They will be taken to the homes, volunteer opportunities and schools. A more resilient participating country is also a much safer experience for those using the Internet across the country.

Building Strong International Position of the Participating Country in the area of cybersecurity

A legislatively directed secure supply chain program will place the participating country in a thought leadership position in the global economy. As such, other governments will want to engage with the participating country in order to copy their successful program and seek advice and council in the areas of national cybersecurity. Security personnel will seek to move to participating country where there is more investment in innovation and research and development in cybersecurity. The participating country may leverage this new global economy to seek better treaties, trade agreements and other nationally impacting activities.

Proposal Options

Most governments around the globe find themselves in one of three supply chain security options that are based on a number of independent factors. Countries are different in almost all categories: size, population, economics, etc. Of course, any of the options below can be specifically modified to meet each country’s unique requirements.

Option I - All Government:

In this scenario the government has decided that the risks are too great to outsource and chooses to conduct all activities under the National Supply Chain Security Program (NSCSP) itself. This choice represents the highest level of involvement for the government and the most effort to initiate the program and begin impacting individual company’s cybersecurity and supply chains. Activities will include, at a very high level:

o Assigning a governmental agency (or creating one) to handle country-wide supply chain risks
o Hiring and assigning individuals to the program office
o Training employees in their duties
o Creating (or purchasing) systems to process, record and report on the program
o Accompanying employee on their first few assessments to ensure their capability

Option II - Highly Limited Government:

In this scenario the government has chosen to immediately implement their National Supply Chain Security Program (NSCSP) and prefer to remain in the role of providing oversight, guidance and direction. In this case, the government will partner with a contractor who will perform the majority of the assessment, remediation tracking and reporting requirements. Activities will include, as a very high level:

o Assigning a governmental agency (or creating one) to handle country-wide supply chain risks
o Hiring and assigning individuals to the program office
o Training employees in their duties
o Crafting and releasing of a Request for Proposal (RFP) to industry for services
o Evaluations and recommendations during the source selection process
o Ensuring the selected contractor has the capability to fulfill the duties of the contract

Option III - Hybrid I & II:

In this scenario, the government has chosen to be a partner with their selected contractor. The selected contractor will perform the majority of the assessments, reporting and remediation tracking, but there will be government officials who also participate in these activities, either in an oversight role or as active participants. Activities for this scenario will include, at a very high level:

o Assigning a governmental agency (or creating one) to handle country-wide supply chain risks
o Hiring and assigning individuals to the program office
o Training employees in their duties
o Crafting and releasing of a Request for Proposal (RFP) to industry for services
o Evaluations and recommendations during the source selection process
o Ensuring the selected contractor has the capability to fulfill the duties of the contract
o Accompanying employee on their first few assessments to ensure their capability

The Biggest Differences between the Different Options include:

o The total number of people who will need to be trained, including potentially government employees as well as contractors
o The types and sizes of information technology systems required to collect, store and report data
o Amount of time used to interview and hire employees
o Amount of time used to evaluate RFP responses and make a recommendation to the government

Built into each option includes two full years of consulting, provided to the country’s government. This allows for questions and answers about their Supply Chain Risk Program as it matures and possibly makes needed adjustments.

Recurring Costs

Annual recurring costs are not included in this program. Recurring costs will vary greatly from country to country. However, Governments should plan on the following types of costs annually:

o Government employee’s salaries and benefits
o Employee training and development
o Contractual obligations
o IT System maintenance and upgrading

We propose a confidential and secure meeting with you and select (cleared) members to discuss in more detail home this structure and program will work for you, the Royal Family and all Assets and your countries digital footprint and ability to secure your country and government is our TOP Priority. As we develop our solution for you, we will be able to train, guild, assess and monitor your growth rate and Cybersecurity Maturity Model Certification (CMMC) working strategy to operate on your own in no time with all the skills and needs you will require to make this highly successful in your country.

Thank you for your time, stay safe and let me know if I can provide you with any additional assistance or a pathway to your country’s road to success!

For more information, email us at: info@terranovadefense.com

National Supply Chain Security Program with CMMC Implementation