Public Safety Canada ran a survey about renewing the National Strategy for Critical Infrastructure
My comment: Most critical infrastructure cyberattacks are perpetrated by insiders (e.g., disgruntled employees). So, I would initially upgrade all critical infrastructure computer networks by powered security platforms like Veriato Cerebral (utilizing artificial intelligence) or ActivTrak, which are security platforms which track, collect, analyse and assess the engagements of employees. Such platforms minimize threats and risky engagements by:
"- unmatched visibility into employee activity and communication,
- helpful risk score dashboard detects various types of threats,
- powerful insider-threat detection security alerts,
- measures and analyzes employee engagement, and
- solid blend of monitoring and analytics in one interface."
Lack of privacy may be perceived as a con but providing an immediate overview of high risk and user behavior within the organization to mitigate threats is a pro.