Information Security Branch

The Office of the Chief Information Officer (OCIO) is responsible for the security of government's electronic information and developing the policies, standards and programs that protect sensitive and personal information.

Within the OCIO, the Information Security Branch (ISB) provides the overall governance for information security to support the secure delivery of government programs.  Through its  Information Security Program (Feb 28, 2013), the ISB promotes a risk based approach to information security and ensures programs, plans and processes are in place to assist government to appropriately manage the risks to the confidentiality, integrity and availability of government information. The ISB provides subject matter experts in support of the OCIO’s responsibilities of developing security policy, architecture and standards and provides specialist consulting to strategic government projects and initiatives.

The branch also works with the B.C. government and the broader public sector to build an awareness of information security best practices. The ISB works closely with the Ministry Information Security Officers (MISO) supporting them in their duties.

The ISB is organized into four units:

Security Awareness and Compliance

This unit provides security awareness programs, security compliance support and security compliance reporting tools to government.  This unit consists of two sections:

Security Awareness: Promotes information security awareness across government through the use of cross government forums and events.  This section is also responsible for establishing and coordinating effective communication channels across government to help share security awareness information and promote a standardized approach to security awareness across government. 

Compliance: Provides the framework and support for information security compliance management.  This section provides:

  • tools and training to ministry information security staff to support the risk management process and manages government-wide information security assessment activities. 
  • sub-licensing of the Information Security Management And Risk Tool (iSMART) to the Broader Public Sector (BPS). Contact Us for more information.

This section reviews and reports statistical information regarding governments overall compliance levels with information security policies and standards.  It also manages key information security risks through tracking and reporting on all known security issues that are a risk to government information.

Strategic Initiative Support and Advisory Services

Provides cross government leadership, advice and expertise on information security with the focus on using security as a risk based business enabler.  The unit provides:

  • subject matter expertise and advice on information security in support of the OCIO’s policy, standards and architecture responsibilities. 
  • advice and consulting services across government, performs Security Threat and Risk Assessments, and conducts audits/reviews as required. 

The unit keeps informed of information security best practices, emerging trends and threats to ensure government’s policies, architecture and standards appropriately address current and emerging risks.

Investigations & Forensics Unit

The Investigations & Forensics Unit manages the investigation of all reported breaches (actual and potential) of information security policy or suspicious activity that may affect the confidentiality, integrity, availability and privacy of government's information.  This includes all major security breaches, system compromises or theft.  The unit also provides investigation and information technology security advice regarding comprehensive and viable security policies, standards and practices.

The Investigations & Forensics Unit also works in cooperation with other investigative units and ensures its investigation processes preserve the integrity of evidence that may be required for legal or disciplinary actions.

If you are aware of or involved in such an event, follow the Information Incident Management Process (including Privacy breaches)

Branch Support Services

Provides administrative, financial and human resources support to ISB staff. 

More Information: