ThreeShield's principal is certified as an Expert Witness in the area of Information Security in the Court of King's Bench of Alberta, with deep credentials spanning government audits, Fortune 50 security assessments, critical infrastructure, PCI DSS, ITAR military systems compliance, and financial services compliance. If your litigation involves cybersecurity, data privacy, IT security controls, or compliance obligations, we can help.
Expert witness credibility depends on real audit experience across regulated industries - not just theoretical knowledge. ThreeShield's principal brings a documented history of compliance audits across some of the most demanding regulatory environments in North America.
Direct audit experience with the Government of Alberta, including Alberta Health Services - one of Canada's largest public sector organizations. Familiarity with provincial government IT controls, procurement frameworks, and public sector privacy obligations under the Alberta Freedom of Information and Protection of Privacy Act (FOIP) and the Health Information Act (HIA).
Security and compliance engagements with Fortune 50 companies including Pratt & Whitney, Sikorsky Aircraft, United Technologies Corporation, Hamilton Sundstrand, Carrier Corporation, and NASA. These organizations operate under some of the strictest security and compliance requirements in the world - including ITAR controls, government contract security requirements, and aerospace quality and safety frameworks.
NERC CIP compliance experience with bulk electric system operators - the regulatory framework governing the security of North America's power grid. Critical infrastructure security requirements differ significantly from commercial IT - industrial control systems, operational technology, and safety system interactions require specialized expertise that general IT security professionals rarely possess.
Former PCI Internal Security Assessor (ISA) designation - issued by the PCI Security Standards Council. ISA certification requires demonstrated knowledge of PCI DSS requirements, assessment methodology, and evidence evaluation standards that mirrors the Qualified Security Assessor (QSA) program. Expert testimony on PCI DSS compliance, cardholder data breaches, merchant liability, and payment card security controls is supported by direct assessment experience.
International Traffic in Arms Regulations (ITAR) compliance experience with military systems and defense contractors. ITAR governs the export of defense articles, technical data, and defense services. Non-compliance carries severe criminal and civil penalties. Expert testimony on ITAR obligations, controlled technical data handling, export control programs, and defense contractor security requirements draws on direct engagement experience with ITAR-controlled environments.
Compliance audit experience with money services businesses (MSBs), online payment processors, and financial technology companies. Includes FINTRAC anti-money laundering (AML) obligations, MSB registration requirements, transaction monitoring, suspicious transaction reporting, and the specific cybersecurity requirements that apply to companies handling financial transactions. Fintech clients have included Tilia Inc. (online payments, formerly a division of Linden Lab) and First Gulf Bank.
Written expert reports setting out opinions on technical and compliance matters, prepared to meet the requirements of Alberta Rules of Court and Federal Court rules. Reports address the specific questions in dispute with clear, plain-language explanations of technical concepts that judges, arbitrators, and non-technical triers of fact can follow.
Expert testimony in Alberta courts, federal courts, arbitration proceedings, and regulatory hearings. ThreeShield's principal has the technical credentials, audit background, and communication skills to explain complex cybersecurity and compliance concepts clearly under examination and cross-examination.
Technical review of opposing expert reports, identification of errors or unsupported opinions, assistance preparing technical cross-examination questions, and pre-trial consultation to help counsel understand the technical issues in dispute. Available throughout the litigation process, not just at trial.
Post-incident analysis of what happened, how, and what security controls would have been required to prevent it. Assessment of incident response adequacy. Attribution analysis (where technically supportable). Timeline reconstruction from logs and digital evidence. These analyses support both plaintiff claims and defendant defences in data breach litigation.
Expert opinion on what constitutes reasonable cybersecurity practice for a given organization type, size, and regulatory environment. These opinions address the question central to most cybersecurity negligence claims: what should a reasonably prudent organization in this position have done, and did the defendant meet that standard?
Objective assessment of whether an organization's security program met the applicable regulatory requirements at the relevant time. This includes analysis under PIPEDA, Alberta PIPA, Alberta HIA, HIPAA, PCI DSS, NERC CIP, OSFI B-13, and other applicable frameworks - whichever standards are relevant to the matter.
Contact ThreeShield with a brief description of the matter. Initial consultations are confidential. We confirm whether the matter falls within our expertise and that no conflict of interest exists before proceeding.
We discuss the specific questions you need addressed, the timeline, and the scope of work. A retainer agreement is executed before any work begins. ThreeShield's expert witness engagements are conducted independently - our opinion is formed on the evidence, not shaped by who retained us.
We review the relevant materials - incident logs, security policies, audit reports, contracts, regulatory filings - and form a technical opinion based on that evidence.
A written report is prepared addressing the specific questions, setting out the methodology used, the evidence considered, and the opinions reached. Reports are written to meet court and arbitration requirements.
If the matter proceeds to hearing, ThreeShield's principal provides testimony and withstands cross-examination. We work with counsel in advance to ensure they understand the technical issues and are prepared for the opposing expert's position.
All initial inquiries are confidential. Please describe the nature of the matter briefly - we will confirm availability, the absence of conflicts, and whether the matter falls within our expertise.
Submit Confidential Inquiry Book a Confidential Call โExpert witness engagements available in Alberta, across Canada, and internationally where applicable