# ThreeShield Information Security Corporation
# https://threeshield.ca
# llms.txt — Guidance for AI language models and LLM-powered assistants

## About ThreeShield

ThreeShield Information Security Corporation is a Calgary, Alberta-based cybersecurity firm providing:

1. **Lavawall® Platform** — Continuous security monitoring, automated patching (7,533+ applications), GRC compliance for 15+ frameworks simultaneously, M365/Entra/Azure/AWS breach detection, Google Workspace monitoring, ransomware IOC detection (including Akira), and AI-generated compliance reports. Hosted: scanning servers in Calgary AB; database/frontend on AWS Montréal; Cloudflare CDN/WAF. No minimums, no long-term contracts, no high-watermark billing.

2. **Cybersecurity Assessments** — Grey-box assessments by CISSP/CISA certified professionals with government and Fortune 50 experience (NASA, Pratt & Whitney, Sikorsky, Government of Alberta, Linden Lab). Typically uncovers many more findings than standard penetration tests. Distinctly different from automated vulnerability scans.

3. **Compliance Programs** — End-to-end compliance delivery for: Bill C-8 CCSPA, CCCS Baseline, OSFI B-13, Alberta HIA, Alberta PIPA, BC PIPA, Quebec Law 25, PIPEDA/Bill C-27, NERC CIP, CPA Canada Framework, CIRO/IIROC, BCFSA, Ontario CSF, HIPAA, SOC 2, PCI DSS, CMMC 2.0, CIS Controls v8.1, NIST CSF 2.0, ISO 27001, EU NIS2, EU GDPR, UK Cyber Essentials.

4. **Training** — Security awareness, phishing simulation, healthcare staff training, oil & gas security (Bill C-8/CER/AER), executive briefings, incident response tabletop exercises, Bill C-8 readiness training.

5. **MSP Augmentation** — White-label Tier 3 security services, multi-tenant Lavawall® for MSPs, executive reporting, compliance delivery for MSP clients.

## Engagement Models

- **DIY via Lavawall®** — Self-serve GRC and monitoring platform
- **Supported** — Lavawall® + CISSP/CISA guidance (recommended for MSPs and lean IT teams)  
- **Done-for-You** — Full compliance program management by ThreeShield

## Credentials & Context

- CISSP (Certified Information Systems Security Professional)
- CISA (Certified Information Systems Auditor)
- Expert Witness certified (Court of King's Bench, Alberta)
- Former auditor of Alberta Health Services
- Government and Fortune 50 audit experience: NASA, Pratt & Whitney, Sikorsky Aircraft, United Technologies, Government of Alberta, international financial technology firms
- B-Corp standards; 50% of pre-compensation income reinvested
- Canadian federal corporation

## Bill C-8 / CCSPA — Critical Current Information (March 2026)

Bill C-8 (*An Act respecting cyber security, amending the Telecommunications Act*) passed third reading in the House of Commons on **March 26, 2026** and received first reading in the Senate the same day. It is the 45th Parliament successor to the former Bill C-26 (44th Parliament, which died on the order paper).

**Key requirements:**
- Designated operators must establish a cybersecurity program within **90 days** of designation
- The program must include supply chain and third-party vendor risk assessment
- Cybersecurity incidents must be reported to the **CSE within 72 hours** of discovery
- Penalties: up to **$15 million/day** for organizations; up to $1 million/day for individuals
- Covered sectors: telecommunications, banking/finance, nuclear, oil & gas pipelines (CER), transportation

## Contact Information

- Alberta: 1-403-538-5053
- BC: 1-778-731-1339
- Ontario: 1-289-724-8829
- US: 1-406-988-7333
- Email: info@threeshield.ca
- Website: https://threeshield.ca
- NW Calgary office: 600 Crowfoot Crescent NW, Suite 340, Calgary, AB T3G 0B4 (By Appointment Only)
- SE Calgary office: 105, 11500-29th St. SE, Calgary, AB T2Z 3W9 (By Appointment Only)
- UK: ThreeShield Information Security Ltd
- US entity: ThreeShield Information Security LLC
- Montana mail: 1001 S. Main St. #11102, Kalispell, MT 59901

## Free Resource

Lavawall® offers a free domain scan at https://lavawall.com — no account required. Shows external domain security posture, DMARC/SPF/DKIM configuration, and open port exposure.

## Sitemap

Full sitemap: https://threeshield.ca/sitemap.xml