Our Approach

We believe in a pragmatic and risk based approach, and with our years of experience we also understand the challenges and issues that organizations can face in their initial journey and in the maturing of their cybersecurity program.

Our approach to cybersecurity is that of strategic thinking, foresight, deliberation and collaboration. That is to say, a process by which we work with the organization in thinking about, assessing, viewing, creating and maintaining a cyber secure presence and future - thoughtfully weighing options in the context of achieving success as guided by the organization’s risk appetite.


Michael Leung is the founder and a Management Consultant of CANADIAN CYBERSECURITY INC.

Michael is an experienced leader in governance and risk management in cyber / information security with over 20 years of overall professional working experiences; more than 15 years of senior level management responsibility, including executive and board level reporting.

He has a diverse background and in-depth knowledge, skills, and abilities in enterprise level strategy and management of information security; operational risk; ERM; enterprise architecture; IT services; project and systems/software development life cycle; e-commerce; cloud computing; disruptive tech; digital banking and core business systems. This is all supported by a traditional engineering discipline with a focus on business objectives and the customer.

Expertise include risk management, security strategies, and tactics - development, implementation and management of frameworks; policies; programs; operations and incident response; threat and risk assessments; and assurance services.

Michael served on ISACA® International’s Relations Board and as Chair of the Enterprise Advocacy Committee, as well as on the Vancouver Chapter for eight years as president and in various executive and non-executive board positions and committees. As the Immediate Past President, he chaired the Nomination Committee. As President and Board chair, he was responsible for the oversight and direction of chapter operations in promoting the practices and the development of professionals in IT risk, governance of enterprise IT, information security management, and IT assurance within the local business and academic community, the chapter membership, and with future members.

He is also a member of the Institute of Corporate Directors, has received CRISC®, CGEIT®, CISM®, CISA®, CISSP®-ISSMP® and C|CISO industry certifications, and actively participates in the local, national and international information security, IT governance and risk community.

About ISACA®
Nearing its 50th year, ISACA® ( is a non-profit, global association for IT and information systems professionals. ISACA leverages the expertise of its 450,000 engaged professionals in information and cyber security, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMI® Institute, to help advance innovation through technology. ISACA provides its members with education, resource sharing, advocacy, professional networking, and a host of other benefits on a local level. ISACA has a presence in 188 countries, including 217 chapters worldwide and offices in both the United States and China.
We welcome the opportunity to starting a conversation with you. We are here to listen and work with you on formulating and executing the most appropriate plan of attack for your cybersecurity issues and concerns.

We look forward to hearing from you.